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A SYSTEM, METHOD AND ARTICLE OF MANUFACTURE FOR AN E- 
COMMERCE BASED USER FRAMEWORK DESIGN FOR MAINTAINING 
USER PREFERENCES, ROLES AND DETAILS 

5 

FIELD OF THE INVENTION 

The present invention relates to software framework designs and more particularly to 
10 managing user preferences, roles and details in a user framework design. 

BACKGROUND OF THE INVENTION 

4f An important use of computers is the transfer of information over a network. 

Uj 15 Currently, the largest computer network in existence is the Internet. The Internet is a 
jg; worldwide interconnection of computer networks that communicate using a common 

~=I protocol. Millions of computers, from low end personal computers to high-end super 

H= computers are coupled to the Internet. 

>; 20 The Internet grew out of work funded in the 1 960s by the U.S. Defense Department's 

UJ 

p Advanced Research Projects Agency. For a long time, Internet was used by 

~% researchers in universities and national laboratories to share information. As the 

existence of the Internet became more widely known, many users outside of the 
academic/research community (e.g., employees of large corporations) started to use 
25 Internet to carry electronic mail. 

In 1989, a new type of information system known as the World-Wide- Web ("the 
Web") was introduced to the Internet. Early development of the Web took place at 
CERN, the European Particle Physics Laboratory. The Web is a wide-area 
30 hypermedia information retrieval system aimed to give wide access to a large 
universe of documents. At that time, the Web was known to and used by the 
academic/research community only. There was no easily available tool which allows 
a technically untrained person to access the Web. 



In 1993, researchers at the National Center for Supercomputing Applications 
(NCSA) released a Web browser called "Mosaic" that implemented a graphical user 
interface (GUI). Mosaic's graphical user interface was simple to learn yet powerful. 
The Mosaic browser allows a user to retrieve documents from the World-Wide-Web 
5 using simple point-and-click commands. Because the user does not have to be 

technically trained and the browser is pleasant to use, it has the potential of opening 
up the Internet to the masses. 

The architecture of the Web follows a conventional client-server model. The terms 
10 "client" and "server" are used to refer to a computer's general role as a requester of 
data (the client) or provider of data (the server). Under the Web environment, Web 
browsers reside in clients and Web documents reside in servers. Web clients and 
Web servers communicate using a protocol called "HyperText Transfer Protocol" 
(HTTP). A browser opens a connection to a server and initiates a request for a 
15 document. The server delivers the requested document, typically in the form of a text 
document coded in a standard Hypertext Markup Language (HTML) format, and 
when the connection is closed in the above interaction, the server serves a passive 
role, i.e., it accepts commands from the client and cannot request the client to 
perform any action. 

20 

The communication model under the conventional Web environment provides a very 
limited level of interaction between clients and servers. In many systems, increasing 
the level of interaction between components in the systems often makes the systems 
more robust, but increasing the interaction increases the complexity of the 
25 interaction and typically slows the rate of the interaction. Thus, the conventional 
Web environment provides less complex, faster interactions because of the Web's 
level of interaction between clients and servers. 



SUMMARY OF THE INVENTION 
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A system, method and article of manufacture are provided for managing user 
5 information. A site server is provided with information stored thereon including 
preferences, roles, and details relating to users. A database separate from the site 
server is also provided. The database has information stored thereon including 
preferences, roles, and details relating to the users. An identity of one of the users is 
authenticated. A single interface is displayed which provides the user access to both 
10 the site server and the database upon authentication of the identity of the user. The 
user is allowed to view and change the information that is stored on the site server 
and the database and that is associated with the user. The single interface is tailored 
based on the information associated with the user. 



q 15 In one embodiment of the present invention, the identity of the user may be 

~f authenticated by verifying a user name and a password, a secure sockets layer (SSL) 

= certificate, and/or a log-in form. Further, the preferences relating to the users may 

tj include a currency in which monetary values are displayed and a language in which 

W text is displayed. Also, the roles relating to the users may include a customer, a 

%f} 20 manager, and an employee. Additionally, the details of the users may include a user 

. =*-~ 

name and a legal name. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

The invention will be better understood when consideration is given to the following 
detailed description thereof. Such description makes reference to the annexed 
drawings wherein: 

Figure 1 illustrates an exemplary hardware implementation of one embodiment of 
the present invention; 

Figure 1.1 illustrates a flowchart for a codes table framework that maintains 
application consistency by referencing text phrases through a short codes framework 
according to an embodiment of the present invention; 



O 15 Figure 1.2 is a flowchart depicting a method for providing an interface between a 
ij first server and a second server with a proxy component situated therebetween; 

St Figure 13 shows the execution architecture for components that make up the SAP 

: ; ; 

q Framework Execution Architecture according to an embodiment of the present 

20 invention; 

Figure 1.4 is a flowchart illustrating a method for sharing context objects among a 
plurality of components executed on a transaction server; 

25 Figure 2 illustrates the create component instances method according to an 
embodiment of the present invention; 

Figure 3 illustrates multiple components in the same transaction context according to 
an embodiment of the present invention; 

30 



Figure 4 illustrates the forcing of a component's database operations to use a 
separate transaction according to an embodiment of the present invention; 
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Figure 5 illustrates the compose work form multiple activities in the same 
transaction according to an embodiment of the present invention; 

5 Figure 6 illustrates JIT activation where MTS intercepts the Customer creation 

request, starts a process for the Customer package containing Customer component, 
creates the ContextObject and returns a reference to the client according to an 
embodiment of the present invention; 

10 Figure 7 illustrates JIT activation when the customer object has been deactivated (the 
O customer object is grayed out) according to an embodiment of the present invention; 

HI Figure 8 is a flowchart depicting a method for providing an activity framework; 

^ 15 Figure 8.1 is an illustration of the MTS runtime environment according to an 
embodiment of the present invention; 

J Figure 9 is a flowchart illustrating a method for accessing services within a server 

3 without a need for knowledge of an application program interface of the server; 

20 

Figure 9.1 illustrates the different layers in a Site Server framework architecture 
according to an embodiment of the present invention; 

Figure 1 0 illustrates schema attributes and classes, with class "Role" and attribute 
25 "RoleName" shown; 

Figure 11 illustrates the creating of Container "Roles" according to an embodiment 
of the present invention; 



30 



Figure 12 is an illustration of a graphic display at a point where a user has right- 
clicked on the Schema folder and selected New - Attribute according to an 
embodiment of the present invention; 
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Figure 13 illustrates the adding of different Roles according to an embodiment of the 
present invention; 

5 Figure 14 illustrates an example of the graphic display showing the attributes of 
member "Joe Bloggs" according to an embodiment of the present invention; 

Figure 15 is a flowchart that illustrates a method for handling events in a system; 

10 Figure 15.1 illustrates a ReTA Event Handler framework that manages the 

informational, warning and error events that an application raises according to an 
embodiment of the present invention; 

Figure 16 is a flowchart depicting a method for managing user information; 

15 

Figure 16.1 illustrates a User framework which enables two approaches to 
maintaining user information according to an embodiment of the present invention; 

Figure 17 is a flowchart that illustrates a method for managing business objects in a 
20 system that includes a plurality of sub-activities which each include sub-activity 
logic adapted to generate an output based on an input received from a user upon 
execution, and a plurality of activities which each execute the sub-activities in a 
unique manner upon being selected for accomplishing a goal associated with the 
activity; 

25 

Figure 17.1 shows a Sub Activity component using the Persistence framework to 
retrieve a Customer Object from the Database according to an embodiment of the 
present invention; 

30 Figure 18 is a flow chart depicting a method for persisting information during a user 
session; 
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Figure 18.1 illustrates a Session Flow Diagram - On Session Start according to an 
embodiment of the present invention; 

Figure 19 illustrates a Session Flow Diagram - On Start ASP Page according to an 
5 embodiment of the present invention; 

Figure 20 is a flow chart illustrating a method for generating a graphical user 
interface; 

10 Figure 20.1 is an illustration showing the steps for generating a HTML page 

consisting of a form with a TextBox, a DropDown list and a PushButton according 
to an embodiment of the present invention; 

Figure 21 is a flow chart depicting a method for software configuration management 

15 

Figure 21.1 is an illustration of an IDEA framework on which the ReTA 
Development Architecture Design is based according to an embodiment of the 
present invention; 

20 Figure 22 illustrates the Configuration Management Life Cycle according to an 
embodiment of the present invention; 

Figure 23 illustrates the change control 'pipeline' and each phase within the pipeline 
according to an embodiment of the present invention; 

25 

Figure 24 depicts the application of Roles within the Microsoft Transaction Server 
(MTS) management console according to an embodiment of the present invention; 



30 



Figure 25 illustrates an environment migration process that guides development 
within ReTA engagement environments according to an embodiment of the present 
invention; 



Figure 26 is an illustration of a Development/Unit test for existing applications 
according to an embodiment of the present invention; 

Figure 27 illustrates an assembly test for existing applications according to an 
embodiment of the present invention; 

Figure 28 illustrates a system test for existing applications according to an 
embodiment of the present invention; 

Figure 29 is a flowchart for production of existing applications according to an 
embodiment of the present invention; 

Figure 30 illustrates a graphic display of Visual Source Safe according to an 
embodiment of the present invention; 

Figure 31 illustrates a frame of PVCS Version Manager I-Net Client according to an 
embodiment of the present invention; 

Figure 32 is an illustration of a Build Source Control Model according to an 
embodiment of the present invention; 

Figure 33 illustrates an Assembly Test phase control mode according to an 
embodiment of the present invention; 

Figure 34 illustrates a Microsoft Visual SourceSafe 'Labels 1 dialog box according to 
an embodiment of the present invention; 

Figure 35 illustrates a Database Diagram within Visual Studio according to an 
embodiment of the present invention; 

Figure 36 illustrates Object Modeling within Rational Rose according to an 
embodiment of the present invention; 
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Figure 37 illustrates directly calling a wrapped CICS component according to an 
embodiment of the present invention; 

5 Figure 38 illustrates indirectly calling a wrapped CICS component according to an 
embodiment of the present invention; 

Figure 39 illustrates RSW eTest Automated Testing Tool according to an 
embodiment of the present invention; 

10 

Figure 40 is an illustration which describes the physical configuration necessary for 
5 ReTA development according to an embodiment of the present invention; 

jg Figure 41 illustrates the application & architecture configuration for a typical ReTA 

4: 1 5 Build environment according to an embodiment of the present invention; 

q Figure 42 illustrates the application & architecture configuration for a typical ReTA 

^\ Build environment according to an embodiment of the present invention; 

::■ 

5 i 

'% 20 Figure 43 illustrates an IDEA Framework with components in scope ReTA Phase 1 
according to an embodiment of the present invention; 

Figure 44 illustrates a NCAF Framework with the shaded components in scope for 
Phase 1 according to an embodiment of the present invention; 

25 

Figure 45 illustrates a MODEnc Framework according to an embodiment of the 
present invention; 

Figure 46 illustrates a NCAF Framework according to an embodiment of the present 
30 invention; 
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Figure 47 illustrates the components that comprise the ReTA execution architecture 
and their physical location according to an embodiment of the present invention; 

Figure 48 illustrates a MODEnc Framework for Operations Architecture according 
5 to an embodiment of the present invention; 

Figure 49 is an illustrative representation of a solicited event resulting from the 
direct (synchronous) polling of a network component by a network management 
station according to an embodiment of the present invention; 

10 

Figure 50 is an illustrative representation of when an unsolicited event occurs when 
a network component sends (asynchronously) data to the network management 
station according to an embodiment of the present invention; 

15 Figure 51 illustrates event management in a net-centric environment according to an 
embodiment of the present invention; 

Figure 52 illustrates event management in an Intranet-based net-centric model 
according to an embodiment of the present invention; 

20 

Figure 53 illustrates event management when using an Extranet-based net-centric 
model according to an embodiment of the present invention; 

Figure 54 illustrates the tables and relationships required for the ReTA Phase 1 
25 Architecture Frameworks according to an embodiment of the present invention; 

Figure 55 illustrates tables and relationships required for the ReTA Phase 1 
validation application according to an embodiment of the present invention; 

30 Figure 56 illustrates the physical configuration of a possible ReTA-engagement 
development environment according to an embodiment of the present invention; 
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Figure 57 illustrates the physical configuration of possible ReTA-based Assembly, 
Product and Performance testing environments according to an embodiment of the 
present invention; 

5 Figure 58 illustrates Separate Web and Application Servers according to an 
embodiment of the present invention; 

Figure 59 illustrates a Single Web and Application Server according to an 
embodiment of the present invention; 

10 

Figure 60 illustrates a Commerce Membership Server [Membership Authentication] 
J properties view according to an embodiment of the present invention; 

JS Figure 61 illustrates a Membership Directory Manager Properties Dialog according 

2 1 5 to an embodiment of the present invention; 

Q Figure 62 is an illustration of a Membership Server Mapping Property according to 

s ~1 an embodiment of the present invention; 

20 Figure 63 is an illustration of a Create New Site Foundation Wizard according to an 
embodiment of the present invention; 

Figure 64 illustrates the web application being placed under the "Member" directory 
of "cm" in Windows Explorer according to an embodiment of the present invention; 

25 

Figure 65 depicts a typical ReTA engagement development environment according 
to an embodiment of the present invention; 

Figure 66 illustrates the development environment configuration for a ReTA Phase 1 
30 engagement according to an embodiment of the present invention; 
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Figure 67 illustrates an interface associated with the ability of inserting or removing 
statements within a block without worrying about adding or removing braces 
according to an embodiment of the present invention; 

5 Figure 68 shows a Visual J++ Build Environment according to an embodiment of 
the present invention; 

Figure 69 shows an interface for attaching to the MTS Process for debugging 
according to an embodiment of the present invention; 

10 

Figure 70 shows an interface for debugging an Active Server Page (example 
global.asa file) according to an embodiment of the present invention; 

Figure 71 illustrates an example of Rose generated java file and javadoc comments 
1 5 according to an embodiment of the present invention; 

Figure 72 is a flowchart illustrating a method for testing a technical architecture; 

Figure 72.1 illustrates the application & architecture configuration for a typical 
20 ReTA Build environment according to an embodiment of the present invention; 

Figure 73 illustrates that the code for technology architecture assembly test may be 
migrated from the technology architecture component test environment as defined in 
the migration procedures according to an embodiment of the present invention; 

25 

Figure 74 illustrates the application & architecture configuration for a typical ReTA 
Build environment according to an embodiment of the present invention; 



30 



Figure 75 illustrates the physical characteristics of the testing environment to be 
utilized during the Performance Testing Phases according to an embodiment of the 
present invention; 
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Figure 76 is a flow chart depicting a method for managing change requests in an e- 
commerce environment; 

Figure 76.1 illustrates a framework associated with the change tracker according to 
5 an embodiment of the present invention; 

Figure 77 illustrates the Change Tracker Main Window according to an embodiment 
of the present invention; 

10 Figure 78 illustrates the Change Request Detail Screen according to an embodiment 
of the present invention; 

Figure 79 illustrates a History of Changes Window according to an embodiment of 
the present invention; 

15 

Figure 80 illustrates the Ad-Hoc Reporting Window according to an embodiment of 
the present invention; 

Figure 81 illustrates the Manager Reporting Window according to an embodiment of 
20 the present invention; 

Figure 82 illustrates the Migration Checklist Window according to an embodiment 
of the present invention; 

25 Figure 83 is a flow chart illustrating a method for managing issues in an e-commerce 
environment; 

Figure 83.1 illustrates the Issue Tracker Main Screen according to an embodiment of 
the present invention; 

30 

Figure 84 illustrates the New Issue Screen according to an embodiment of the 
present invention; 
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Figure 85 illustrates the Modify Issue Screen according to an embodiment of the 
present invention; 

5 Figure 86 illustrates the Report Selection Screen according to an embodiment of the 
present invention; 

Figure 87 is a flow chart depicting a method for network performance modeling; 

10 Figure 87.1 illustrates the end to end process associated with Performance Modeling 
according to an embodiment of the present invention; 

Figure 88 illustrates the Effective Network Performance Management according to 
an embodiment of the present invention; 

15 

Figure 89 illustrates an example of overhead introduced at lower layers according to 
an embodiment of the present invention; 

Figure 90 illustrates a graph depicting a Network Usage Profile according to an 
20 embodiment of the present invention; 

Figure 91 illustrates a Network Layout according to an embodiment of the present 
invention; 

25 Figure 92 illustrates how the four tool categories relate to each other according to an 
embodiment of the present invention; 

Figure 93 is a flow chart depicting a method for managing software modules during 
development; 

30 

Figure 93.1 illustrates the PVCS Migration Flow according to an embodiment of the 
present invention; 
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Figure 94 illustrates SCM Planning according to an embodiment of the present 
invention; 

5 Figure 95 illustrates an Identify CM Units & Baselines Process Flow according to an 
embodiment of the present invention; 

Figure 96 illustrates a manner in which CM Repositories and Practices Process Flow 
are established according to an embodiment of the present invention; 

10 

Figure 97 illustrates the Establish Change Control Process according to an 
embodiment of the present invention; 

Figure 98 illustrates Collect Metrics and Identify CI Activities according to an 
1 5 embodiment of the present invention; 

Figure 99 illustrates the Review/Establish Project Security according to an 
embodiment of the present invention; 

20 Figure 100 illustrates the Determine Training Requirements according to an 
embodiment of the present invention; 

Figure 101 illustrates the Create Project CM Plan according to an embodiment of the 
present invention; 

25 

Figure 102 shows the Manage CM Repository Process Flow according to an 
embodiment of the present invention; 

Figure 103 is a flow chart illustrating a method for providing a system investigation 
30 report workbench; 
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Figure 103.1 illustrates a SIR Workbench Main Window screen which provides 
navigation buttons for adding new SERs, viewing existing SIRs, viewing/printing 
existing reports and help according to an embodiment of the present invention; 

5 Figure 104 illustrates New SIR window displayed upon select the New button on the 
Main Window according to an embodiment of the present invention; 

Figure 105 illustrates a window for reviewing and modifying existing SIRs 
according to an embodiment of the present invention; 

10 

Figure 106 illustrates the Change Control Details Window according to an 
embodiment of the present invention; 

Figure 107 illustrates a Report Selection Screen upon selection the Report button 
15 from the main menu according to an embodiment of the present invention; 

Figure 108 illustrates a graphic display of SourceSafe Administrator according to an 
embodiment of the present invention; 

20 Figure 109 illustrates a configuration of a project tree within Visual SourceSafe 
Explorer according to an embodiment of the present invention; 

Figure 109.1 illustrates a dialog box of the projection tree in Figure 109 designed to 
allow developers to quickly located and retrieve desired projects and/or files 
25 according to an embodiment of the present invention; 

Figure 110 illustrates a graphic display when the user gets the latest of the server- 
side application code from VSS according to an embodiment of the present 
invention; 

30 
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Figure 111 illustrates a window that appears where selection the Recursive checkbox 
permits copying of any sub-projects according to an embodiment of the present 
invention; 

5 Figure 112 illustrates a History window displayed upon selection of View History 
menu item according to an embodiment of the present invention; 

Figure 113 illustrates the VSS Explorer reflecting the status of the checked out files 
for other developers to see at a point where one can open the local project or files 
10 and make any desired changes according to an embodiment of the present invention; 

Figure 114 illustrates Check In from within the VSS Explorer according to an 
embodiment of the present invention; 

15 Figure 115 illustrates the prompting for Check In details according to an 
embodiment of the present invention; 

Figure 116 illustrates a label creation dialog box according to an embodiment of the 
present invention; 

20 

Figure 117 illustrates a History of Project dialog box according to an embodiment of 
the present invention; 

Figure 118 illustrates a History Details dialog according to an embodiment of the 
25 present invention; 

Figure 119 illustrates the end to end evaluation process of an Internet firewall for 
ReTA according to an embodiment of the present invention; 

30 Figure 120 is a chart of Firewall Products according to an embodiment of the present 
invention; 
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Figure 121 depicts the two firewall vendors selected for the product evaluation stage 
according to an embodiment of the present invention; 

Figure 122 is a diagram of the Activity Framework classes with the 
5 VBActivityWrapper according to an embodiment of the present invention; 

Figure 123 illustrates the relationships IVB Activity interface according to an 
embodiment of the present invention; 

10 Figure 124 is a flow chart depicting a method for providing a global internetworking 
gateway architecture in an e-commerce environment; 

Figure 124.1 illustrates a simple high level internetworking gateway architecture 
according to an embodiment of the present invention; 

15 

Figure 125 illustrates an Internetworking Gateway with a Specialized Proxy/Cache 
Server according to an embodiment of the present invention; 

Figure 126 illustrates a high level global internetworking gateway architecture 
20 according to an embodiment of the present invention; 

Figure 127 shows an illustrative West Coast internetworking gateway architecture 
according to an embodiment of the present invention; 

25 Figure 128 shows a Remote Access Internetworking Gateway architecture according 
to an embodiment of the present invention; 

Figure 129 illustrates an Internetworking Gateway with Partner collaboration on 
Internet Development according to an embodiment of the present invention; 

30 

Figure 130 illustrates a persistable business object extending Persistence. 
RetaPersistableObj. According to an embodiment of the present invention; 
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Figure 131 illustrates layers of a shared property group manager according to an 
embodiment of the present invention; 

5 Figure 132 is a flow chart depicting a method for initializing a database used with an 
issue tracker; 

Figure 132*1 illustrates configuring of an issue tracker tool for normal operation 
according to an embodiment of the present invention; 

10 

Figure 133 illustrates a dialog box prompting to confirm the removal of linked tables 
within a database; 

=p Figure 134 illustrates a New Table' dialog window being displayed upon selection of 

^15 a 'New' button in order to insert a new table according to an embodiment of the 
^ present invention; 

t ^ Figure 135 illustrates a prompting by Access for selecting tables to link according to 

S an embodiment of the present invention; 

S 20 

Figure 136 illustrates a dialog box indicating linked tables according to an 
embodiment of the present invention; 

Figure 137 illustrates a 6 Welcome Form' window according to an embodiment of the 
25 present invention; 

Figure 138 illustrates a 'Issue Form' window according to an embodiment of the 
present invention; 

30 Figure 139 illustrates a window which permits modification of the available reports 
within the Issue tool according to an embodiment of the present invention; 
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Figure 140 illustrates a window displayed permitting modification of desired report 
elements to the new project name according to an embodiment of the present 
invention; 

5 Figure 141 illustrates a Team Code Table window which allows adding and deleting 
of project locations according to an embodiment of the present invention; 

Figure 142 illustrates a Team Membership Table window which allows adding and 
deleting of team members according to an embodiment of the present invention; 

10 

Figure 143 illustrates a Project Phases Table window which allows changing of 
Jfi project phases according to an embodiment of the present invention; 

=p Figure 144 illustrates a Startup window which allows changing of the title of a 

2 15 database according to an embodiment of the present invention; 

O Figure 145 is a flowchart depicting a method for generating software based on 

s 8 l business components; 

tfj 20 Figure 145.1 illustrates a relationship between business components and partitioned 
business components according to an embodiment of the present invention; 

Figure 146 illustrates how a Billing Business Component may create an invoice 
according to an embodiment of the present invention; 

25 

Figure 147 illustrates the relationship between the spectrum of Business 
Components and the types of Partitioned Business Components according to an 
embodiment of the present invention; 

30 Figure 148 illustrates the flow of workflow, dialog flow, and/or user interface 

designs to a User Interface Component according to an embodiment of the present 
invention; 
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Figure 149 is a diagram of the Eagle Application Model which illustrates how the 
different types of Partitioned Business Components may interact with each other 
according to an embodiment of the present invention; 

5 

Figure 150 illustrates what makes up a Partitioned Business Component according to 
an embodiment of the present invention; 

Figure 151 illustrates the role of patterns and frameworks according to an 
10 embodiment of the present invention; 

Figure 152 illustrates a Business Component Identifying Methodology according to 
an embodiment of the present invention; 

15 Figure 153 is a flow chart depicting an exemplary embodiment of a resources e- 
commerce technical architecture; 

Figure 154 is a flow chart illustrating a second exemplary embodiment of a method 
for maintaining data in an e-commerce based technical architecture; 

20 

Figure 155 is a flow chart illustraing an exemplary embodiment of a method for 
providing a resources e-commerce technical architecture; 

Figure 156 illustrates another exemplary embodiment of a method for providing a 
25 resources e-commerce technical architecture; and 

Figure 157 illustrates an additional exemplary embodiment of a method for 
providing a resources e-commerce technical architecture. 
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DETAILED DESCRIPTION OF THE INVENTION 

5 

The Resources eCommerce Technology Architecture (ReTA) is a solution that 
allows the use of packaged components to be integrated into a client based 
eCommerce solution. Before the present invention, the Resources architecture 
offerings provided services that supported the construction, execution and operation 

10 of very large custom built solutions. In the last few years, client needs have shifted 
towards requirements for solutions that continually integrate well with third party 
applications (i.e., data warehouse and portion of the present description management 
systems). Previous engagements have proven that it is difficult to integrate these 
applications into a new solution. As application vendors continue to produce new 

15 releases that incorporate technical advancements, it is even more difficult to ensure 
that these integrated applications continue to work with a given solution. 

The ReTA approach to constructing, executing and operating a solution emphasizes 
the ability to change solution components with minimal impact on the solution as a 

20 whole. From this approach, ReTA views third party applications as another 

component in the overall solution. ReTA is component based, which means the 
engagement can choose to take only the pieces it needs to meet its specific business 
requirements. ReTA is especially suited to building small applications, 
implementing tools and packages, integrating applications and web enabling 

25 applications. 

ReTA leverages the best capabilities from established market leaders such as 
Microsoft, SAP and Oracle. In addition, ReTA leverages some of the Resources 
prior efforts to integrate solutions. The present invention is an assembly of these 
30 best capabilities that helps to ensure a holistic delivered solution. 



In short, the benefits ReTA provides to the Resources practice and clients are: 
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Save engagement teams the redundant effort of repeatedly evaluating the 
same technology. 

Help engagement teams avoid the risk of combining solution components 
that may be difficult to get to work together. 

Make it cost effective and low risk to apply upgrades to each of the solution 
products without negatively affecting the other solution components. 

Show the clients a solution to a real challenge that cannot be offered by SAP, 
Microsoft, IBM, Oracle or many technology startups involved in eCommerce 
work. 

Focus the Resources architecture offering on common technology choices 
that coexist nicely. 

hj In accordance with at least one embodiment of the present invention, a system is 

~? provided for affording various features which support a resources eCommerce 

yB 20 Technical Architecture. The present invention may be enabled using a hardware 

implementation such as that illustrated in Figure 1. Further, various functional and 
user interface features of one embodiment of the present invention may be enabled 
using software programming, i.e. object oriented programming (OOP). 

25 Hardware Overview 

A representative hardware environment of a preferred embodiment of the present 
invention is depicted in Figure 1, which illustrates a typical hardware configuration 
of a workstation having a central processing unit 110, such as a microprocessor, and 
30 a number of other units interconnected via a system bus 112. The workstation 
shown in Figure 1 includes Random Access Memory (RAM) 114, Read Only 
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Memory (ROM) 116, an I/O adapter 118 for connecting peripheral devices such as 
disk storage units 120 to the bus 112, a user interface adapter 122 for connecting a 
keyboard 124, a mouse 126, a speaker 128, a microphone 132, and/or other user 
interface devices such as a touch screen (not shown) to the bus 112, communication 
5 adapter 134 for connecting the workstation to a communication network (e.g., a data 
processing network) and a display adapter 136 for connecting the bus 112 to a 
display device 138. The workstation typically has resident thereon an operating 
system such as the Microsoft Windows NT or Windows/95 Operating System (OS), 
the IBM OS/2 operating system, the MAC OS, or UNIX operating system. 

10 

SOFTWARE OVERVIEW 

Object oriented programming (OOP) has become increasingly used to develop 
complex applications. As OOP moves toward the mainstream of software design 
15 and development, various software solutions require adaptation to make use of the 
benefits of OOP. A need exists for the principles of OOP to be applied to a 
messaging interface of an electronic messaging system such that a set of OOP 
classes and objects for the messaging interface can be provided. 

20 OOP is a process of developing computer software using objects, including the steps 
of analyzing the problem, designing the system, and constructing the program. An 
object is a software package that contains both data and a collection of related 
structures and procedures. Since it contains both data and a collection of structures 
and procedures, it can be visualized as a self-sufficient component that does not 

25 require other additional structures, procedures or data to perform its specific task. 
OOP, therefore, views a computer program as a collection of largely autonomous 
components, called objects, each of which is responsible for a specific task. This 
concept of packaging data, structures, and procedures together in one component or 
module is called encapsulation. 

30 

In general, OOP components are reusable software modules which present an 
interface that conforms to an object model and which are accessed at run-time 
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through a component integration architecture. A component integration architecture 
is a set of architecture mechanisms which allow software modules in different 
process spaces to utilize each other's capabilities or functions. This is generally 
done by assuming a common component object model on which to build the 
5 architecture. It is worthwhile to differentiate between an object and a class of 

objects at this point. An object is a single instance of the class of objects, which is 
often just called a class. A class of objects can be viewed as a blueprint, from which 
many objects can be formed. 

10 OOP allows the programmer to create an object that is a part of another object. For 
example, the object representing a piston engine is said to have a composition- 
al relationship with the object representing a piston. In reality, a piston engine 
~ comprises a piston, valves and many other components; the fact that a piston is an 
4= element of a piston engine can be logically and semantically represented in OOP by 
;U 15 two objects. 

D OOP also allows creation of an object that "depends from" another object. If there 

are two objects, one representing a piston engine and the other representing a piston 
4r engine wherein the piston is made of ceramic, then the relationship between the two 

yQ 20 objects is not that of composition. A ceramic piston engine does not make up a 
piston engine. Rather it is merely one kind of piston engine that has one more 
limitation than the piston engine; its piston is made of ceramic. In this case, the 
object representing the ceramic piston engine is called a derived object, and it 
inherits all of the aspects of the object representing the piston engine and adds 
25 further limitation or detail to it. The object representing the ceramic piston engine 
"depends from" the object representing the piston engine. The relationship between 
these objects is called inheritance. 

When the object or class representing the ceramic piston engine inherits all of the 
30 aspects of the objects representing the piston engine, it inherits the thermal 

characteristics of a standard piston defined in the piston engine class. However, the 
ceramic piston engine object overrides these ceramic specific thermal characteristics, 
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which are typically different from those associated with a metal piston. It skips over 
the original and uses new functions related to ceramic pistons. Different kinds of 
piston engines have different characteristics, but may have the same underlying 
functions associated with them (e.g., how many pistons in the engine, ignition 
5 sequences, lubrication, etc.). To access each of these functions in any piston engine 
object, a programmer would call the same functions with the same names, but each 
type of piston engine may have different/overriding implementations of functions 
behind the same name. This ability to hide different implementations of a function 
behind the same name is called polymorphism and it greatly simplifies 
1 0 communication among obj ects . 

With the concepts of composition-relationship, encapsulation, inheritance and 
polymorphism, an object can represent just about anything in the real world. In fact, 
the logical perception of the reality is the only limit on determining the kinds of 
15 things that can become objects in object-oriented software. Some typical categories 
are as follows: 

• Objects can represent physical objects, such as automobiles in a traffic-flow 
simulation, electrical components in a circuit-design program, countries in an 
economics model, or aircraft in an air-traffic-control system. 

20 • Objects can represent elements of the computer-user environment such as 
windows, menus or graphics objects. 

• An object can represent an inventory, such as a personnel file or a table of the 
latitudes and longitudes of cities. 

• An object can represent user-defined data types such as time, angles, and 
25 complex numbers, or points on the plane. 

With this enormous capability of an object to represent just about any logically 
separable matters, OOP allows the software developer to design and implement a 
computer program that is a model of some aspects of reality, whether that reality is a 
30 physical entity, a process, a system, or a composition of matter. Since the object can 
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10 



represent anything, the software developer can create an object which can be used as 
a component in a larger software project in the fixture. 

If 90% of a new OOP software program consists of proven, existing components 
made from preexisting reusable objects, then only the remaining 10% of the new 
software project has to be written and tested from scratch. Since 90% already came 
from an inventory of extensively tested reusable objects, the potential domain from 
which an error could originate is 10% of the program. As a result, OOP enables 
software developers to build objects out of other, previously built objects. 



This process closely resembles complex machinery being built out of assemblies and 
sub-assemblies. OOP technology, therefore, makes software engineering more like 
hardware engineering in that software is built from existing components, which are 
available to the developer as objects. All this adds up to an improved quality of the 
15 software as well as an increase in the speed of its development. 

Programming languages are beginning to fully support the OOP principles, such as 
encapsulation, inheritance, polymorphism, and composition-relationship. With the 
advent of the C++ language, many commercial software developers have embraced 

20 OOP. C++ is an OOP language that offers a fast, machine-executable code. 
Furthermore, C++ is suitable for both commercial-application and systems- 
programming projects. For now, C++ appears to be the most popular choice among 
many OOP programmers, but there is a host of other OOP languages, such as 
Smalltalk, Common Lisp Object System (CLOS), and Eiffel. Additionally, OOP 

25 capabilities are being added to more traditional popular computer programming 
languages such as Pascal. 



The benefits of object classes can be summarized, as follows: 

• Objects and their corresponding classes break down complex programming 
30 problems into many smaller, simpler problems. 

• Encapsulation enforces data abstraction through the organization of data into 
small, independent objects that can communicate with each other. 
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Encapsulation protects the data in an object from accidental damage, but 
allows other objects to interact with that data by calling the object's member 
functions and structures. 

Subclassing and inheritance make it possible to extend and modify objects 
through deriving new kinds of objects from the standard classes available in 
the system. Thus, new capabilities are created without having to start from 
scratch. 

Polymorphism and multiple inheritance make it possible for different 
programmers to mix and match characteristics of many different classes and 
create specialized objects that can still work with related objects in 
predictable ways. 

Class hierarchies and containment hierarchies provide a flexible mechanism 
for modeling real-world objects and the relationships among them. 
Libraries of reusable classes are useful in many situations, but they also have 
some limitations. For example: 

Complexity. In a complex system, the class hierarchies for related classes 
can become extremely confusing, with many dozens or even hundreds of 
classes. 

Flow of control. A program written with the aid of class libraries is still 
responsible for the flow of control (i.e., it must control the interactions 
among all the objects created from a particular library). The programmer has 
to decide which functions to call at what times for which kinds of objects. 
Duplication of effort. Although class libraries allow programmers to use and 
reuse many small pieces of code, each programmer puts those pieces together 
in a different way. Two different programmers can use the same set of class 
libraries to write two programs that do exactly the same thing but whose 
internal structure (i.e., design) may be quite different, depending on hundreds 
of small decisions each programmer makes along the way. Inevitably, 
similar pieces of code end up doing similar things in slightly different ways 
and do not work as well together as they should. 
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Class libraries are very flexible. As programs grow more complex, more 
programmers are forced to reinvent basic solutions to basic problems over and over 
again. A relatively new extension of the class library concept is to have a framework 
of class libraries. This framework is more complex and consists of significant 
5 collections of collaborating classes that capture both the small scale patterns and 
major mechanisms that implement the common requirements and design in a 
specific application domain. They were first developed to free application 
programmers from the chores involved in displaying menus, windows, dialog boxes, 
and other standard user interface elements for personal computers. 

10 

Frameworks also represent a change in the way programmers think about the 
interaction between the code they write and code written by others. In the early days 
of procedural programming, the programmer called libraries provided by the 
operating system to perform certain tasks, but basically the program executed down 
15 the page from start to finish, and the programmer was solely responsible for the flow 
of control. This was appropriate for printing out paychecks, calculating a 
mathematical table, or solving other problems with a program that executed in just 
one way. 

20 The development of graphical user interfaces began to turn this procedural 

programming arrangement inside out. These interfaces allow the user, rather than 
program logic, to drive the program and decide when certain actions should be 
performed. Today, most personal computer software accomplishes this by means of 
an event loop which monitors the mouse, keyboard, and other sources of external 

25 events and calls the appropriate parts of the programmer's code according to actions 
that the user performs. The programmer no longer determines the order in which 
events occur. Instead, a program is divided into separate pieces that are called at 
unpredictable times and in an unpredictable order. By relinquishing control in this 
way to users, the developer creates a program that is much easier to use. 

30 Nevertheless, individual pieces of the program written by the developer still call 
libraries provided by the operating system to accomplish certain tasks, and the 
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programmer must still determine the flow of control within each piece after it's 
called by the event loop. Application code still "sits on top of" the system. 

Even event loop programs require programmers to write a lot of code that should not 
5 need to be written separately for every application. The concept of an application 
framework carries the event loop concept further. Instead of dealing with all the 
nuts and bolts of constructing basic menus, windows, and dialog boxes and then 
making all these things work together, programmers using application frameworks 
start with working application code and basic user interface elements in place. 
10 Subsequently, they build from there by replacing some of the generic capabilities of 
the framework with the specific capabilities of the intended application. 

'jti Application frameworks reduce the total amount of code that a programmer has to 

4= write from scratch. However, because the framework is really a generic application 

15 that displays windows, supports copy and paste, and so on, the programmer can also 
^ relinquish control to a greater degree than event loop programs permit. The 

□ framework code takes care of almost all event handling and flow of control, and the 

Q programmer's code is called only when the framework needs it (e.g., to create or 

^ manipulate a proprietary data structure). 

5 20 

A programmer writing a framework program not only relinquishes control to the 
user (as is also true for event loop programs), but also relinquishes the detailed flow 
of control within the program to the framework. This approach allows the creation 
of more complex systems that work together in interesting ways, as opposed to 
25 isolated programs, having custom code, being created over and over again for similar 
problems. 

Thus, as is explained above, a framework basically is a collection of cooperating classes 
that make up a reusable design solution for a given problem domain. It typically 
30 includes objects that provide default behavior (e.g., for menus and windows), and 
programmers use it by inheriting some of that default behavior and overriding other 
behavior so that the framework calls application code at the appropriate times. 
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There are three main differences between frameworks and class libraries: 

• Behavior versus protocol. Class libraries are essentially collections of 
behaviors that you can call when you want those individual behaviors in your 
program. A framework, on the other hand, provides not only behavior but 
also the protocol or set of rules that govern the ways in which behaviors can 
be combined, including rules for what a programmer is supposed to provide 
versus what the framework provides. 

• Call versus override. With a class library, the code the programmer 
instantiates objects and calls their member functions. It's possible to 
instantiate and call objects in the same way with a framework (i.e., to treat 
the framework as a class library), but to take full advantage of a framework's 
reusable design, a programmer typically writes code that overrides and is 
called by the framework. The framework manages the flow of control among 
its objects. Writing a program involves dividing responsibilities among the 
various pieces of software that are called by the framework rather than 
specifying how the different pieces should work together. 

• Implementation versus design. With class libraries, programmers reuse only 
implementations, whereas with frameworks, they reuse design. A framework 
embodies the way a family of related programs or pieces of software work. It 
represents a generic design solution that can be adapted to a variety of 
specific problems in a given domain. For example, a single framework can 
embody the way a user interface works, even though two different user 
interfaces created with the same framework might solve quite different 
interface problems. 

Thus, through the development of frameworks for solutions to various problems and 
programming tasks, significant reductions in the design and development effort for 
software can be achieved. A preferred embodiment of the invention utilizes 
HyperText Markup Language (HTML) to implement documents on the Internet 
together with a general-purpose secure communication protocol for a transport 
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medium between the client and a company. HTTP or other protocols could be 
readily substituted for HTML without undue experimentation. Information on these 
products is available in T. Berners-Lee, D. Connoly, "RFC 1866: Hypertext Markup 
Language - 2.0" (Nov. 1995); and R. Fielding, H, Frystyk, T. Berners-Lee, J. Gettys 
5 and J.C. Mogul, "Hypertext Transfer Protocol -- HTTP/1 . 1 : HTTP Working Group 
Internet Draft" (May 2, 1996). HTML is a simple data format used to create 
hypertext documents that are portable from one platform to another. HTML 
documents are SGML documents with generic semantics that are appropriate for 
representing information from a wide range of domains. HTML has been in use by 
10 the World-Wide Web global information initiative since 1990. HTML is an 

application of ISO Standard 8879; 1986 Information Processing Text and Office 
Systems; Standard Generalized Markup Language (SGML). 

To date, Web development tools have been limited in their ability to create dynamic 
1 5 Web applications which span from client to server and interoperate with existing 

computing resources. Until recently, HTML has been the dominant technology used 
in development of Web-based solutions. However, HTML has proven to be 
inadequate in the following areas: 

• Poor performance; 

20 • Restricted user interface capabilities; 

• Can only produce static Web pages; 

• Lack of interoperability with existing applications and data; and 

• Inability to scale. 

25 Sun Microsystem's Java language solves many of the client-side problems by: 

• Improving performance on the client side; 

• Enabling the creation of dynamic, real-time Web applications; and 

• Providing the ability to create a wide variety of user interface components. 

30 With Java, developers can create robust User Interface (UI) components. Custom 
"widgets" (e.g., real-time stock tickers, animated icons, etc.) can be created, and 
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client-side performance is improved. Unlike HTML, Java supports the notion of 
client-side validation, offloading appropriate processing onto the client for improved 
performance. Dynamic, real-time Web pages can be created. Using the above- 
mentioned custom UI components, dynamic Web pages can also be created. 

5 

Sun f s Java language has emerged as an industry-recognized language for 
"programming the Internet." Sun defines Java as "a simple, object-oriented, 
distributed, interpreted, robust, secure, architecture-neutral, portable, high- 
performance, multithreaded, dynamic, buzzword-compliant, general-purpose 

10 programming language. Java supports programming for the Internet in the form of 
platform-independent Java applets." Java applets are small, specialized applications 
that comply with Sun's Java Application Programming Interface (API) allowing 
developers to add "interactive content" to Web documents (e.g., simple animations, 
page adornments, basic games, etc.). Applets execute within a Java-compatible 

1 5 browser (e.g., Netscape Navigator) by copying code from the server to client. From 
a language standpoint, Java's core feature set is based on C++. Sun's Java literature 
states that Java is basically, "C++ with extensions from Objective C for more 
dynamic method resolution." 

20 Another technology that provides similar function to JAVA is provided by Microsoft 
and ActiveX Technologies, to give developers and Web designers wherewithal to 
build dynamic content for the Internet and personal computers. ActiveX includes 
tools for developing animation, 3-D virtual reality, video and other multimedia 
content. The tools use Internet standards, work on multiple platforms, and are being 

25 supported by over 100 companies. The group's building blocks are called ActiveX 
Controls, which are fast components that enable developers to embed parts of 
software in hypertext markup language (HTML) pages. ActiveX Controls work with 
a variety of programming languages including Microsoft Visual C++, Borland 
Delphi, Microsoft Visual Basic programming system and, in the future, Microsoft's 

30 development tool for Java, code named "Jakarta." ActiveX Technologies also 
includes ActiveX Server Framework, allowing developers to create server 
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applications. One of ordinary skill in the art readily recognizes that ActiveX could 
be substituted for JAVA without undue experimentation to practice the invention. 

Various aspects of ReTA will now be set forth under separate headings: 

5 

CODES TABLE FRAMEWORK 

With reference to Figure 1.1, a codes table framework 140 is provided for 
maintaining application consistency by referencing text phrases through a short 
10 codes framework. First, in operation 142, a table of codes each having a text phrase 
O associated therewith is provided. Such table of codes is stored on a local storage 
rt medium. Next, in operation 144, the table of codes is accessed on the local storage 
S 1 medium. One of the text phrases is subsequently retrieved by selecting a 
p corresponding one of the codes of the table, as indicated in operation 146. During 
rf 15 operation, modification of the text phrases associated with each of the codes of the 
a_ table is permitted. See operation 148. 

The modification may be carried out during a business logic execution. Further, 
}Q various services may be provided such as retrieving a single one of the text phrases, 
^ 20 retrieving all of the text phrases in response to a single command, updating a single 
code and text phrase combination, updating all of the code and text phrase 
combinations, naming the table, adding a new code and text phrase combination, 
removing one of the code and text phrase combinations, and/or adding another table. 

25 Further, a name of the table may be stored upon retrieval of the text phrase. Further, 
a total number of code and text phrase combinations in the table may be determined 
and stored. In the case where a plurality of tables are provided, any number of the 
tables may be removed during operation. Additional information will be now be 
discussed relative to the various foregoing operations. 

30 

This portion of the present description details the ReTA Codes Table framework 
design from the perspective of the application developer. The purpose of a codes 
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table is to maintain application consistency by referencing text phrases (to be 
displayed to the end user) through short codes. The code and text phrase (decode) 
are stored in a standard table format. The codes table component stores this table 
locally on the web server, thus reducing the overhead of accessing the database each 
5 time the application needs to translate a code. 

Description 

The role of this framework is to store frequently used code/decode sets on the web 
10 server and provide services that enable the application developer to retrieve the 

decode(s) associated with code(s). In addition, the framework provides services to 
enable the developer to modify the contents of the locally stored codes table during 
business logic execution. 

15 Services 



The Codes Table Framework provides the following services: 



Sen-ice 


Detail 




■ Retrieve single decode value 




H Retrieve all decode values 




1 Update single Code/Decode 




H Update all Codes/Decodes 




■ Set Table Name 




H Add new Code/Decode 




H Remove Code/Decode 




1 Add Table 




H Remove Table 



20 Components 

The Codes Table Framework consist of the following COM objects: 
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Component 




Service 



Retrieve decode(s) from the codes table. 
Maintain the codes table. 



These components are described in detailed in the following sub-sections. 



AFRetrieval 

5 

The AFRetrieval component enables the application developer to load the specified 
codes table into local memory (for faster access) and retrieve the requested 
decode(s). 

10 Methods 



The IAFRetrieval interface defines the access to the AFRetrieval component. This 
interface supports the following methods: 



Method 




Description 



Retrieve the requested codes table into local 
memory and store the table name for 
subsequent retrieval requests (instead of 
retrieving from MTS shared memory). 
Search through the currently identified local 
codes table and return the 'decode 1 associated 
with the 'code*. Refer to setTableName 
method. 

Return the number of code / decode pairs 
contained in the currently identified local 
codes table. Refer to setTableName method. 
Return all the codes and decodes for the 
specified codes table. 
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AFMaintenance 

5 The AFMaintenance component maintains the specified local codes table. 
Methods 



The IAFMaintenance interface defines the access to the AFMaintenance component. 
10 This interface supports the following methods: 



Method 


Description 


setTableName 


Store the name of local codes table to be 
accessed for subsequent maintenance requests. 


setCodeDecode 


Dynamically add a code/decode pair to the 
currently identified local codes table. Refer to 
setTableName method. 


Add 


Replace all code/decode pairs of currently 
identified local codes table with the passed in 
code/decode pairs. Refer to setTableName 
method. 


Append 


Append the passed in code/decode pairs to the 
currently identified local codes table. Refer to 
setTableName method. 


setCodeDecodeByTable 


Return fully populated codes table directly 
from the database. 


delCodeDecode 


Remove specified code/decode pair from 
currently identified local codes table. Refer to 




setTableName method. 


DelCodesTable 


Remove the currently identified local codes 
table from local memory. Refer to 
setTableName method. 
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SAP FRAMEWORK DESIGN 

5 

Figure 1.2 illustrates a method 150 for providing an interface between a first server 
and a second server with a proxy component situated therebetween. Initially, in 
operation 152, a request for a business object is identified by an application on the 
first server. The first server is connected to the second server in operation 153. In 

10 operation 154, selection criteria from the first server is transmitted to the second 

server. In response to the selection criteria, the first server receives a first recordset 
and a second recordset from the second server in operation 155. Business data is 
included in the first recordset and result codes are included in the second recordset. 
The first and second recordsets are mapped to the business object in operation 156 

15 and, in operation 157, the business object is sent to the application on the first server. 

The first and second recordsets may also be mapped to the business object using a 
utility conversion function. Additionally, the first and second recordsets may also be 
mapped to the business object using a utility conversion function. Optionally, the 
20 recordsets may be ActiveX data objects (ADO) recordsets. 

The first server may also receive a third recordset from the second server in response 
to the selection criteria. This third recordset may include errors and references to an 
error table on the first server for allowing processing of the errors. 

25 

In a further embodiment of the present invention, changes to the proxy component 
may be prevented from affecting the application on the first server. Additionally, 
generation of a plurality of the proxy components by a user may be allowed. The 
following material provides a more detailed description of the above-described 
30 method. 
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This portion of the present description details the ReTA SAP framework design 
from the perspective of the application developer. The role of this framework is to 
provide designs and templates that describe how to integrate an Internet application 
with a SAP server. Unlike the other ReTA frameworks, this does not provide any 
5 code components for connecting to SAP, but uses the SAP/DCOM component 
connector created jointly by Microsoft and SAP. This portion of the present 
description provides a framework for the design of the architecture using the SAP 
DCOM connector components to integrate with SAP. 

1 0 The DCOM Component Connector provides interoperability between R/3 objects 
and COM objects across a heterogeneous network through well-defined business 
interfaces. It provides the development tools for connecting with SAP to standard 
SAP BAPI 's (Business Application Programmer Interface) as well as custom 
developed or modified B API's. The DCOM component connector can connect to 

1 5 SAP on Windows NT or UNIX. The Application server needs to be R/3 Version 2. 1 
or higher or R/2 with SOD. 

The ReTA SAP framework uses an adapter layer design that places a wrapper 
around the DCOM component connector. The adapter layer improves developer 
20 productivity by managing some of the lower level tasks, and improves the flexibility 
of the final solution. 

The remainder of this portion of the present description describes the Execution and 
Development Architectures for the SAP framework. 

25 

SAP Framework Execution Architecture 

The DCOM Component connector uses COM proxy components that map to SAP 
Business Objects. There is one proxy component for each SAP business object. The 
30 SAP business objects can contain both the standard BAPI 's (Business Application 
Programmer Interface) as well as custom developed or modified BAPFs. The 
SAP/DCOM component generation wizard connects to SAP, examines the SAP 



business object, and generates a proxy component with the same interface. The 
SAP/DCOM connector component can connect to SAP on Windows NT or UNIX. 
Figure 1.3 shows the execution architecture for components that make up the SAP 
Framework Execution Architecture 160. 

5 

Referring again to Figure 1.3, the different layers in the SAP framework architecture 
are shown. The SAP/DCOM connector generated components 162 provide the actual 
connection to SAP 164. These components are generated from the SAP Business 
Application Programmer Interface (BAPI) 166,168. The BAPFs are either the 
10 standard SAP BAPFs, custom created BAPFs or Remote Function Calls. 

The ReTA framework uses an Adapter layer to provide a thin wrapper on the 
SAP/DCOM connector components. The adapter layer provides the following 
benefits: 

15 • It insulates the application from changes in the SAP/DCOM connector 

components. 

• It provides utility functions for mapping the SAP/DCOM connector data 
types to the types required by the application. 

• It maps the SAP return error codes to the format required by the application. 

20 

The SAP/DCOM connector generated components use ADO (ActiveX Data Objects) 
recordsets to pass data to SAP. The adapter layer components map from these 
recordsets to the Business Objects or Business Data format used by the application. 
If a given method returns business data from SAP then this is in the form of an ADO 
25 recordset. If a method updates information in SAP then one must pass in an ADO 
recordset with all the data. To initialize this ADO recordset one calls a separate 
standard interface method of the proxy component. SAP returns business errors by 
returning a separate ADO recordset that references an error table. 

30 The ReTA framework's adapter layer maps the ADO recordsets that the DCOM 
connector uses to the business objects or data objects used by the application. The 
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adapter layer also maps the error table recordset returned by SAP to the error 
handling mechanism used by the application. 



SAP Framework Development Architecture 
SAP/DCOM component connector generation 



The SAP/DCOM connector portion of the present description gives a detailed 
description of how to generate a COM proxy component for a given SAP BAPI. The 
10 steps for creating a proxy component are: 

• Using the DCOM Component Connector browser based tool, create a 
destination entry for the SAP Application server. 

15 • Use the DCOM Connector wizard to connect to this destination. 

• Browse through the available SAP Business Objects on the remote SAP 
system. 

• Select a business object and click Generate Component DLL. 



20 



The DCOM Component connector may then generate C++ and IDL files, compile 
these files to create the proxy component and install this component in MTS. 



SAP Adapter component design 

25 

This portion of the description describes the responsibility of the SAP adapter 
components and gives a template for a component. 

The SAP Adapter components are responsible for: 

30 

• Insulating the application from changes in the SAP BAPI. 
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• Receiving business data from SAP 

• Updating business data in SAP 

• Mapping to/from the SAP returned data types 

• Mapping the SAP error return codes to the error handling mechanism used by 
the application. 

There is a one to one mapping between the SAP Adapter components and the 
generated SAP/DCOM connector components. 

SAP Adapter component template 

This template gives an example of an SAP connector component with one method to 
receive business data and one method to send business data. It describes how to 
convert to/from the data types required by the SAP Connector component and how 
to manage the SAP return error codes. 

Function GetSAPData(<in>selectionCriteria, <out> businessObject): integer 

• Create instance of the corresponding SAP connector component 

• Call corresponding SAP method passing in selectionCriteria.SAP may return 
an ADO Recordset with the business data and a second ADO Recordset with 
the Result codes. 

• Call an error utility function that maps the error return codes onto the 
applications error handling system. 

• Map the return recordset onto the businessObject (possibly using utility 
conversion function). Return the business object to the caller of the function. 

Function SetSAPData(<in>businessObject):integer 

• Create instance of the corresponding SAP connector component 

• Call the SAP connector standard method DimAS to retrieve the recordset 
that may be populated from the businessObject. 
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Populate the recordset from the businessObject (possibly using utility 
conversion function). 

Cal the corresponding SAP method passing in the recordset. 

Call the error utility function that maps the error return codes onto the 

applications error handling system. 

Gives an example of an adapter component that demonstrates retrieving and 
updating SAP data and handling the SAP error codes. 



MTS FRAMEWORK DESIGN 

10 

Figure 1.4 illustrates a method for sharing context objects among a plurality of 
components executed on a transaction server. In operation 170, a first component is 
executed on a transaction server. A context object is then generated for the first 
component in operation 172 to control a scope of the execution of the first 
15 component. In operation 174, a call made by the first component is identified to 
execute a second component. The context object of the first component is utilized 
for controlling the scope of the execution of the second component in operation 176. 
Optionally, the first and second components may be service order item components. 



20 The first component may be an activity component and the second component may 
be a business component. As an option, a plurality of activity components may be 
provided. As another option, a call made by the activity component may also be 
identified to execute a second business component with the context object of the 
activity component utilized for controlling the scope of the execution of the second 

25 business component. As a further option, a call made by the activity component may 
be identified to execute an error logging component with an additional context 
object separate from the context object of the activity component being utilized for 
controlling the scope of the execution of the error logging component. The 
following material provides a more detailed description of the above-described 

30 method. 
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This portion of the present description details the ReTA approach to performing 
"logical unit of work" database operations in the context of transactions. 
Applications developed with ReTA implement transactions through Microsoft 
Transaction Server (MTS). Within the MTS transaction context, ReTA applications 
5 group business components into transactions. The application developer designs 
each business component to define whether its actions should be performed within a 
transaction. 

In addition, this portion of the present description details the MTS framework 
10 features and their implications on ReTA application design. 

MTS Transactions: Application Design Implementation 
1 5 Description 

There are two main tasks the developer performs to design applications that use 
MTS to support transactions: 

20 • Code the application component to be MTS aware. 

• Use MTS services to group database operations into transactions. 

Design MTS aware components 

25 Figure 2 illustrates a create component instances method 200. MTS controls the 
scope of transactions by using transaction context objects. Each transaction server 
component has an associated MTS context object 202, which controls the transaction 
context. If a component 204 needs to create instances of other components 206 
during its processing, it uses the Createlnstance method of the MTS context object to 

30 create the new object. Calling this method ensures that the new component has an 
associated MTS context object 202 with the correct transaction scope. 
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Group database operations into MTS transactions 

The following portions of the present description include three database operations 
grouping scenarios that a ReTA application developer can implement through MTS. 

5 

Compose work from multiple components in the same transaction 

As illustrated in Figure 3, in this scenario, the developer composes the work of a 
business activity 300 into a single transaction. Activity 300 uses business objects in 

10 components 302 and 304 to compete its work. Any database operations generated 
by either of these business components are completed in the context of a single 
transaction. To achieve this functionality, the developer uses the default transaction 
context scope that MTS provides. The developer sets the transaction attribute of the 
Activity component to Requires a transaction and the attribute of the business 

1 5 components to either Requires a transaction or Supports transactions. When the 
activity component initializes, MTS creates a corresponding context object 306. 
Subsequently, when the activity component initializes the business components, 
these business components share the same context object and are therefore 
committed in the same transaction. 

20 

When the Activity completes and the reference to the activity component is 
removed, the transaction is committed. If any of the database calls, fails or any of 
the components decides to abort the transaction, the transaction is aborted and all the 
database actions performed are rolled back. 

25 

Force a component's database operations to use a separate transaction. 

In this scenario, as illustrated in Figure 4, the developer creates a component whose 
database operations are always carried out in a separate transaction. For example, an 
30 error logging component 402 should not use the transaction context of the 

component generating the error. This could cause the error logged to the database to 
be rolled back if an error occurs in a separate database operation. This scenario has 
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an activity component 400, two business components 404,406 and an error logging 
component 402. If an error occurs in the activity, then an error message is sent to the 
error logging component (which logs the error in a database). The transaction of the 
activity is rolled back, however, the transaction of the error logging component is 
5 committed to the database. 

In this scenario, the developer uses the default behavior of MTS. The error logging 
component is registered as Requires a new transaction. When the activity 
component initializes the error logging component, MTS creates a new transaction 
10 context for the component. If an error occurs in the activity, the database operations 
for the activity is rolled back, but any database operations that the error component 
generates is committed. 

Compose work from multiple activities in the same transaction. 

15 

With reference to Figure 5 (which illustrates the compose work form multiple 
activities in the same transaction), in this scenario, the developer creates two 
separate activities 500,502 whose work sometimes need to be composed into a 
single transaction. To achieve this functionality using MTS, the developer creates a 
20 third activity component 504 that calls the other two activities. The third activity 

component is registered as Requires a transaction. When this component initializes, 
MTS creates a new transaction context. When the activity 504 initializes the other 
two activities 500,502, they share the same transaction context 506 (and any objects 
they create also have the ability to share the transaction context). 

25 

MTS Features: Application Design Implications 
Description 



30 



Note: A FinancialWorks Knowledge Exchange (kX) posting (Optimizing 
Performance) provided most of the content for this portion of the description. 
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This portion of the description provides insight on the following MTS features: 

• Connection Pooling 

• Stateless/Stateful objects 

• Package threading 

• Transactions 

• Just in Time activation 

• Object creation 

• Parameter Passing. 



10 Connection Pooling 



MTS and ODBC provide connection pooling. MTS/ODBC associates a connection 
pool with a specific user account. Therefore, it is important that all data access 
components have a pre-defined account to use when requesting database 
15 connections. In addition, connections are pooled only within the same process. This 
implies that every MTS package may have a pool of connections, as each MTS 
package runs in its own process. 



Note that the ODBC connections are pooled, not the ADO connections. When the 
20 application code closes the ADO connection, the corresponding ODBC connection 
stays in the pool until a configurable timeout expires (cptimeout). The configurable 
timeout key is in the registry under 

6 mey_Lx>cal_Machine\Software\ODBC\ODBCINST.riS[I\<driver name>\cptimeout" 
(with a default value of 60 seconds). Connection pooling can be turned off by 
25 setting this value to 0. In effect, connection pooling keeps more connections open 
with the database but saves the (expensive) overhead of re-creating the connection 
every time. 



30 



Note: Connection pooling is a feature of the ODBC resource manager. MTS 
automates the configuration of the ODBC resource to enable connection pooling. 
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Implications on application design: 

Create accounts for account packages. Group components under the appropriate 
credentials and packages. The Database server is a resource bottleneck. To improve 
5 performance, ensure high bandwidth connections exist between application and 
database servers. 

Connection pooling provides performance improvement especially in the case where 
connections are used and released frequently such as Internet application. 

10 

Stateful and Stateless Objects 

MTS supports the concept of a stateful object. However, the object must satisfy the 
following conditions: 



1) The object can not be transactional. 

2) Even if it is marked as non-transactional, it cannot participate in a transaction 
(i.e. cannot be called from a transactional object or call a transactional 



15 



20 



object). The reason is that MTS implements an activity concept. In the 
activity concept, all objects participating in a transaction (or LUW) are 
logically "grouped" together. Upon the completion of that transaction, 
SetComplete is called and all objects in that activity are freed. Thus, no 
object in the transaction holds context (state) on transaction completion. 



25 



30 



3) 



To enable a stateful object to participate in a transaction, partition the object 
into two parts: Stateful and Transactional. The Stateful part lives outside 
MTS and uses the TransactionContext object to manage manually (making 
explicit calls to start, commit and/or abort) the transaction inside MTS. To 
maintain transactional integrity, use the TransactionContext (as opposed to 
the ObjectContext) to create MTS objects. Therefore, the 



TransactionContext is passed inside MTS for later use of any MTS object 
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instantiation. On the server, the code looks like the following: Set MtsObject 
= MtxTransactionContext.CreateInstance("progid") 

Implication on application design: 

5 

In general, be deliberate with MTS and state. When working with MTS 
components, it is recommended to keep the context(state) on the client and have the 
server components be service driven. These components are instantiated to provide 
a service and then are freed. 

10 

Package Threading 

Every time a package receives a method call, MTS creates a new thread to service 
the request. At the time of writing this portion of the present description, MTS 
15 packages have a maximum limit of 100 threads per package. If the number of the 
incoming concurrent calls exceeds 100, MTS serializes all excess calls. Project 
testing (a Finacial Works project) proved that performance degraded significantly 
after reaching the 100 concurrent threads mark. 

20 Implication on application design: 

Due to this limitation, package the application DLLs in a way to minimize thread 
contention. For future releases of MTS, Microsoft claims the limit for concurrent 
calls may increase to 1000. 

25 Activities 

MTS defines an activity as set of objects acting on behalf of a client's request. 
Every MTS object belongs to one activity. The activity ED is recorded in the context 
of the object. The objects in an activity consist of the object created by a base client 
30 and any subsequent object created by it and all of its descendants. Objects in an 
activity can be distributed across several processes (and machines). 
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Whenever a base client creates an MTS object, a new activity is created. When a 
MTS object is created from an existing context, the new object becomes part of the 
same activity. The object's context inherits the activity identifier of the creating 
context. 

5 

Implication on application design: 

Activities define a single logical thread of execution. When a base client calls into 
an activity, all subsequent requests from other clients are blocked until control is 
10 returned to the original caller. 

D Automatic Transaction Control 

J MTS initiates a transaction when a method on a transactional component is called. 

MTS records the transaction ID in the component's object context. This transaction 
s ID is passed to other MTS components' context objects requiring participation in the 

same transaction. 

r?t MTS operates with an optimistic assumption that the transaction is going to succeed. 
^ 20 If the component never calls SetAbort, SetComplete, DisableCommit, or 

EnableCommit, the transaction commits when the client releases its last reference to 

the MTS component. 

If the component calls SetComplete, the transaction commits as soon as the method 
25 call returns to the client. When the component calls SetAbort the transaction aborts 
as soon as the method call returns to the client. 

If the component calls DisableCommit, the transaction aborts when the client 
releases its last reference to the component. If the component calls EnableCommit, 
30 the transaction commits when the client releases its last reference to the component. 

Implications on application design: 
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When designing the transaction timeout, consider the potential for slow system and 
network response times. The application design should avoid long running 
transactions and attempt to break them into smaller ones. 

Note: 

There is no explicit Commit method. If no objects have aborted the transaction by 
calling SetAbort or disabled commitment by calling DisableCommit, MTS may 
automatically commit the transaction when the client releases its object references. 

Manual Transaction Control 

Transactions can also be manually controlled from a base client by using the 
transaction context to start and commit/abort a transaction. This is particularly 
useful in the case where a stateful base client activates an MTS-managed 
transactional object to carry out a distributed transaction. In order to achieve that, 
MTS uses the Transaction Context created by the base client. 

Just-In-Time Activation 

For every business object created, MTS intercepts the call and creates a sibling 
object called the Object Context. It is the object context that may manage the 
transaction and the business object activation/deactivation. 

One of the interface methods on the context object is SetComplete. When 
SetComplete is called, the transaction (if any) is signaled as ready to be committed 
and the instance of the business object is destroyed releasing all resources used by it. 
The next time the client issues a method call, MTS creates a new instance of the 
business object and delegates the call to it (this is assuming that the client did not 
release its original reference to the MTS-supplied context wrapper). In the MTS 
world, this is known as JIT activation. 
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The following method call trace illustrates JIT activation: 

• The client application starts, and the client requests an instance of the 
Customerlnterface of the Customer component. 



10 



• Set objICustomer = 
CreateObject("CustomerComponent.CustomerInterface")- 

• COM searches the Running Object Table to determine whether an instance of 
the component is active on the client. 

• If not, COM searches the Registry for the information describing 
Customerlnterface and invokes the creation of the interface. 



j • MTS 600 intercepts the Customer creation request 602, starts a process for 

"15 the Customer package containing Customer component 604, creates the 

ContextObject 606 and returns a reference to the client. See Figure 6. 

? • The client application requests an operation on the Customerlnterface. 

20 • MTS invokes the operation and commits the transaction (if any) by calling 

SetComplete. 

• MTS 700 deactivates the component, freeing the thread, the memory and 
returns the result to the client. Figure 7 shows that the customer object 702 
25 has been deactivated (the customer object is grayed out). 



To take advantage of JIT activation, the clients do not release the reference to the 
MTS-supplied context wrapper (the client code does not set objICustomer = null). 
When the client requests a new operation, the Context wrapper creates a new 
30 instance of the Customer component and delegates the incoming call to it. By 
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keeping the reference to the context wrapper, MTS does not need to recreate the 
object. 

Implications on application design: 

5 

To take advantage of JIT activation, client applications acquire references to the 
server components as early as possible and uses them as needed. It would be ideal to 
obtain references at application startup, but this has the drawback of not being 
reliable. If for some reason the references were lost, this may result in run time 
10 errors. 

Object Creation: New vs. CreateObject vs. Createlnstance 

This portion of the description describes the appropriate usage of the different types 
15 of object creation methods. 

New: 

The keyword "New" creates an object with private instantiation property. It is used 
with early binding. 

20 

CreateObject: 

Normally used with late binding and used to create objects with public instantiation 
property. If other MTS object are instantiated using CreateObject (on the server), 
they run the risk of running in the wrong context. CreateObject can be used from the 
25 client to instantiate any MTS object. 

Createlnstance : 

It is the interface method of the context object used to instantiate other MTS objects. 
This is the only way to guarantee the newly created object participates in the same 
30 current transaction. When MTS instantiates a transaction, it records the transaction 
ED in the component's object context. This transaction ID is passed to other MTS 
components only when Createlnstance is used to create these objects. 
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Implication on application Design: 

When CreateObject is used, Java/VB uses COM to create an instance of the object. 
5 If the Object is registered in MTS, MTS loads the DLL and creates a new instance 
passing back a MTS-managed handle to the object. The object gets a new MTS 
context. 

When New is used in Java/VB, the action depends on where the object being created 
10 lives. If it is in a different DLL, COM is used and the mechanism is the same as 
CreateObject. If it is in the same DLL Java/VB creates the instance internally and 
may not create a new MTS-managed object, whereas CreateObject may. Private 
classes can only be created using New since they are not exposed to COM. 

15 When one MTS object creates another MTS object, the new object gets a new 
context. If CreateObject (or New for an object in a different DLL) is used, the 
contexts are independent of each other. If a transaction is involved, the new context 
manages a completely different transaction from the original. If Createlnstance is 
used, the new object's context shares the same transaction as the invoking one. 

20 

Using New is only a problem in the following scenario. The application contains 
one DLL that contains more than one MTS-managed class. The application wants 
an instance of one of these classes to create an instance of the other (in separate 
contexts). New may not do this, whereas CreateObject and Createlnstance may. 
25 However, Createlnstance is required if they are to run under the same transaction. 

Parameter Passing 

If Visual Basic is the language of choice, make sure to pass parameters by value (as 
30 the default in VB is by reference). This may help reduce network trips and hence 
improves performance. 
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If one is passing the collection object in MTS, make sure to use the Microsoft 
provided wrapper collection object. The standard VB collection object is known to 
cause errors when running under MTS. It is better to use a variant array instead of 
collection to pass information around. It is more robust and performs better. 

5 

As parameters, MTS registered business objects are passed by reference as they use 
standard marshalling 

When working with MTS objects, ensure that object references are exchanged 
10 through the return from an object creation interface such 

ITransactionContext.Createlnstance or IObjectContext.Createlnstance. This allows 
^ MTS to manage context switches and Object lifetime. 

=p Data Access and Locking Policy 

S 15 

^ Database Locking should be in place to ensure the integrity of the database in a 
O multi-user environment. Locking prevents the common problem of lost updates 
§ 7; from multiple users updating the same record. The optimistic approach of record 
O locking is based on the assumption that it is rarely the case for multiple users to read 
Jq20 and update the same records concurrently. Such a situation is treated as exceptional 
processing rather than normal. Optimistic locking does not place any locks at read 
time; locks are actually placed at update time. A time stamp mechanism should be 
provided to ensure that at update or delete times the record has not changed since the 
last time it is read. It is recommended to use optimistic locking with ADO and MTS 
25 to improve performance. If the data access mechanism uses ADO disconnected 
RecordSets, then the only possible locking policy is optimistic. 

Implication on application Design: 

If one is using optimistic locking and ADO, it is recommended that one uses 
30 disconnected recordsets to marshal data. Project experience (FinancialWorks 
project) shows that the application should avoid using the ADO 
Records et.GetRows method, as it significantly slows performance. 
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Data Marshaling 

Use disconnected Recordsets. This may ensure high performance result when 
5 marshaling data across a network. Client applications have to reference an 

ADOR.Recrodset, which is a lighter version of the ADODB. Recordset designed 
specifically for client's use. With disconnected Recordsets only optimistic locking 
can be employed. 

10 If the marshalling of data from client to server is done by collection, beware to use 
_ the wrapper collection provided on the MTS site. MTS may not work correctly when 
yD passing the VB standard collection object. It is known to cause runtime errors. 

fSl5 ACTIVITY FRAMEWORK DESIGN 

O Figure 8 illustrates a method for providing an activity framework. First, in operation 
hi 800 a plurality of sub-activities are created which each include sub-activity logic 
y adapted to generate an output based on an input received from a user upon 
^20 execution. In operation 802, a plurality of activities are defined, each of which 

execute the sub-activities in a unique manner upon being selected for accomplishing 
a goal associated with the activity. Selection of one of the activities is allowed in 
operation 804 by receiving user indicia. In operation 806, an interface is depicted 
for allowing receipt of the input and display of the output during execution of the 
25 sub-activities associated with the selected activity. 

The sub-activity logic may be adapted for verifying that all required input has been 
received prior to generating the output. Access to the input received from the user 
by each of the sub-activities of the activities may also be allowed. 

30 

Optionally, the activity may include creating a service order. Further, the sub- 
activities each may additionally include at least one business component. 
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The interface may include a plurality of displays that are each displayed during the 
execution of a corresponding one of the sub-activities. The following material 
provides a more detailed description of the above-described method. 

5 

This portion of the present description details the ReTA Activity framework design 
from the perspective of the application developer. The primary role of this 
framework is to provide services that support the "model view controller" (MVC) 
design pattern. In this pattern, the application implements a "separation of concern" 
10 among the user interface (view), logical unit of work (controller) and business 
„ components (model). Separating the user interface from the business logic increases 
-JJ reuse of the interface and the business component. In this design pattern, different 
S types of interfaces can reuse the same model and the same interface can view 
J: different models. Another goal of separating presentation and storage 
yy 15 responsibilities is to reduce the impact of change. For example, changing the user 
1 interface design should only impact the user interface components and not the 

Q business logic. Through modeling the "separation of concern" pattern, the ReTA 
hi Activity framework increases application maintainability and flexibility. It also 
.7; encourages "best practice" coding standards. 
520 

Activity Framework 

Description 

25 See Figure 8.1, which illustrates the MTS runtime environment 830. The ReTA 
Activity framework distributes the application development responsibilities as 
follows: 

• Web page (Active Server Page) (View/Controller) The application's web 
page logic 832 starts the activity 834, executes the sub-activity and creates 
30 the user interfaces. No business logic is contained directly in the web page 

code. The application developer leverages the ReTA Session, ReTA Activity 
and the ReTA UI frameworks from the web page code. 
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• Activity Components (Controller) The application's activity logic implements 
the business process logic (functional control logic) 836. Activities support 
high-level processes that are not the responsibility of any individual business 
components. This includes high-level steps related to a user's "logical unit 
of work" or business function. Thus, activities enable multiple web pages to 
implement a "logical unit of work". An example of an activity implementing 
a "logical unit of work" with multiple web pages is "Create Service Order". 
In this example activity, the user selects a service to order on the first page, 
enters the customer information on the second page, reviews and submits the 
order on the third page and receives an order confirmation on the fourth page. 

• Business Components: (Model) Business components 837 implement the 
application's business entity logic. These components represent individual 
business entities (such as customer or account). Each entity encapsulates its 
own data and behavior acting on that data. Note: The Activity implements 
business logic that spans multiple business components. 

The ReTA Activity framework consists of the following three main components: 

Activity 

• An activity 834 encompasses a combination of web pages, which fulfill a 
business function. The activity has the following responsibilities: 

• Provide a "logical unit of work" context to all sub-activities within the 
activity. The Activity framework uses Microsoft Transaction Server (MTS) 
transactions to implement the "logical unit of work" concept. On the 
completion of a transaction (whether successful or abort), MTS ensures that 
each sub-activity may be in a consistent state (either completed or rolled 
back). 

• Check that requested information and conditions are fulfilled before 
executing logic. 

• Maintain information shared between the pages of the activity. 
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• Create, trigger and manage sub-activities. 

• Check page access authorization, when browsing through activity pages. 

• Release all maintained information when closed. 

• Execute post-conditions when closed. Examples of post conditions are 
releasing resources tied up for the activity or removing pessimistic locks on 
tables. 

• Commit or abort all opened sub-activities. 

• The activity (by itself) does not contain any business logic. Sub-activities 
(and their associated business components) provide the business logic. Thus, 
the activity maintains a context and provides a "logical unit of work" for a 
specific business functionality. 

Sub-activity 

A sub-activity 838 executes a sub-part of the overall activity business logic. The 
sub-activity represents the smallest grained business logic. For example in a "Create 
Service Order" activity, one sub-activity retrieves all the service types information to 
display on the first web page. A sub-activity has the following responsibilities: 

• Check pre-conditions. Ensure requested information and conditions are 
fulfilled before executing business logic. 

• Execute business logic 

• Execute post-conditions. 

View 

A view 840 defines the mapping between a user interface and business components 
containing the values to display. The view has the following responsibilities: 

• Unplugging the user interface from the business component values. 

• Automatically and transparent to the developer, capture all the values entered 
by the user and update the related business components. 

• Display the business component values attached to the user interface. 

• Trigger a sub-activity when capturing values. 
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• Note: The Activity component maintains a separate view for each web page 
defined to be part of the activity. 

Note: 

5 The ReTA Activity framework fully supports business activity components written 
in Java or Visual Basic. In addition, the Activity framework provides partial support 
for business activity components written C++. For C++ components, the application 
developer must implement the services provided by the Activity utility classes 
AFView and AFViewBOMapping. 

10 

Services 

The Activity Framework provides the following services: 



Detail 



Microsoft Transaction Server transaction principles 
Business Component context 
User Interface context — List boxes 
Sub-Activity context 

Page access authorization — Activity scope 
Pre-conditions - Activity level check 
Post-conditions - Activity level check 
Pre-conditions - Sub-Activity level check 
Execute business logic 
Post-conditions - Sub-Activity level check 
Unplug user interface from business component 
Capture user entry and update business component 
Display value attached to business component 
Wrapper to support Activities written in Visual Basic 




15 



Components and Classes 
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The Activity Framework implements these services through the following COM and 
Class objects: 



Component 


Service 


AF Activity 


Implements "logical unit of work". Manages 
collection of Sub-Activities and Views. 


AFSubActivity 


Implements a sub-part of the overall activity 
business logic. 


AFCollection 


General purpose Collection component. 


AFVBActivityWrapper 


Enables Activity Components written in Visual 
Basic. 


Class 


AFView 
AFVBView 


For a specific Active Server Page, defines the 
mapping between a collection of user interface entry 
fields and the business component instances 
containing the values to display. Note: Multiple 
views can exist for a single ASP. For example, a 
separate view can be defined for each form on a 
page. 


AFViewBOMapping 
AFVBViewBOMapping 


Defines the mapping between a user interface entry 
field and the business component instances 
containing the value to display. 


AFViewRadioButtonBOMapping 
AFVBViewRadioButtonBOMappi 


Defines the mapping between a user interface radio 
button field and the business component instances 
containing the value to display. 


AFViewDynamicBOMapping 
AFVBViewDynamicBOMapping 


Defines the mapping between a dynamically created 
user interface entry field and the business 
component instances containing the value to display. 


AFViewTextAreaBOMapping 
AFVBViewTextAreaBOMapping 


Defines the mapping between a user interface multi- 
line entry field and the business component 
instances containing the value to display. 
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Defines the mapping between a user interface drop 
down combo box field and the business component 
instances containing the value to display. 



Defines the mapping between a user interface 
ThumbNail (iconic pushbutton) field and the 
business components containing the values to 
display. 



Defines the mapping between a user interface 
Selected List Box field and the business components 
containing the values to display. 



%y These components and classes are described in detailed in the following sub-portions 
ff= of the description. 

%D 5 AFActivity 

^ The AFActivity component provides the structure for implementing business logic, 
UJ state management among web pages, management of views and sub-activities, and 
;pj transactional support for carrying out a "logical unit of work". The application 
J310 developer creates an activity component for each specific business activity by 
extending the AFActivity component. 

The activity component shares the services provided within the Activity framework 
allowing the application developer to concentrate on the business logic. Application 
15 business logic is organized into three separate areas within an activity: pre- 
conditions, execution, and post conditions. 



20 The IAF Activity, IAFContext and IAFEventListener interfaces define the access to 
the AFActivity component. These interfaces support the following methods: 



Methods 
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Method Description 



AFActivity 




oiarc 


oian ine aciivny. ine application aeveioper cans ims 
method from the ASP page. 


Stop 


Release the activity and all its associated instances, 
trails ine commit meinoQ. i ne appn canon aeveioper 
calls this method from the last ASP page for the 
business activity. 


Abort 


Gracefully abort the activity. Abort associated sub- 
activities. Remove all references to sub-activities, 
business components and stateful UI components. 


Commit 


Declare that the current activity and all its sub- activities 
have completed their work and should be deactivated 
wnen ine currently executing memou returns to me 
client. This method may call the setComplete method 
oi lvixo. ^occ ivi i o portion oi me present ucbtnpuun 
for more information) 


RetrieveUIInstance 


Retrieve a User Interface component instance from the 
ui context oi me acuviiy. 


AddToUIContext 


Add a User Interface component to the UI context of 
the activity. 


ExecuteSubActivity 


Execute the sub-activity related to the current page for 
ine /vctivity. i^an ine suo- activity precondition, 
execute and postcondition methods. 


IsPartOfActivity 


If the ASP name passed as a parameter is part of the 

activity, ICIUIII LI UC. 1 lllo IllClIiUU Callct 11 1C 

AFTrackingManager component of the ReTA Session 
framework in order to get the result. 


CheckPageAuthorizatio 
n 


Ask the tracking object related to the activity to check 
the page authorization (uses the AFTrackingManager 
component of the ReTA Session framework). If the 
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UIFieldValue 


ncpr ic oil r\\\?F*r\ tr\ qpppcc tVitc r*3Cr^ cpt tnp r"iiTTPnt r*Qcr^ 
U&Cl lb dUUWCU 1\j al/Lvbo LI Ho ^JagC, oCl UIC wUllClll pagC 

of the activitv with the nape nassed as narameter 

Ui lllw ULll V 11 V Willi Lllv LFClgv UOOVvl CIO |JCU (Ullvlvl • 


Return the business component value that is mapped to 

thp QnppifipH T TT fiplH fii^p^ thp Artivitv framfiwnrk' 

Ll 1 v> OU t> 1 J^l ^vl X ll&lVi 1 UOvO U1V V lljr llOlllvWUllV 

View service). 


GetName 


Return the activity name. 


GetF rameName 


Return the name of the frame where to display the 
encountered events. 


GetPageParameter 


rceturn a string contaimng an parameters to sena to tne 
next page, ims string contains me iiaiiieo 01 an ui 
fields of the page and the JavaScript code needed to 
retrieve their values. Called by the ReTA UI 
framework component AFScriptGenerator. 


uc to Lanjr age 


l tti iV* c± c t otH"i n cr r\ o crt> t~\ i trip* q \/i 

xveiurn uic bioriing page 01 uic at/iivny. 


geilNeXixage 


XVClUili UIC 11CAI pagC LkjL 11 IC L>U11C11L a^LlVliy, UaoCU Uil 

the current activity page saved in the AFTracking 

ortippf of thp npfivitv ?»nH on thp £*f*tinn mi^^pH fl^ 

UUJ t/L/ L \JL a^tlVlLV CU1U Ull lll\-> a\slL\Jll ^Ooow OO 

parameter. 


gct\^ urreii ir age 


1VC IL11 11 11 1C IvUllClll jjagc 


retrieveBOInstance 


Return requested business component from the activity 
business context. 


AaavJpjeci 


/\qq a Dusmess ouject ^neia oy tne activity s oubmcas> 
object context" object). 


GetObject 


Return the instance of the requested business object 

/"hp»1H r*\/ tV\ <=» ar»ti\/it\/' c "VincinpQQ oriippt r*on tp y t" 
^iiciu. uy uic activity o uuoincoo uujcC'i cuiiical 

object). 


T? pmovpfYhippt 


Rpmnvp tVip in<;tfinpp of thp rpniip<;tpfl Hii^ine^ ohiect 

1\&111\J V t Ll lllOiailV^' \J L LliW IvUUvOlW UUOlllvOO VUJvvl 

(held by the activity's "business object context" 
object). 


ContainsKey 


If the "label" of the requested business object exists 
(held by the activity's "business object context" 



-65- 



object), return true. 



/ientilisteneT 



Return all business object "labels" (held by the 
activity's "business object context" object). 
Method called by the ReTA Session during an ASP 
start page event to enable the architecture to capture 
user entry from previous web page. The ReTA Session 
component holds references to all registered listeners 
(Activity components). 

Reference to the listener object. One listener object is 
associated with each registered Activity component. 



Abstract Methods 

The application developer implements the following abstract methods in the 
business activity component: 



Method 


Description 




HH Create a Sub-Activity. 




HHj Return the Activity name. 




HH Pre-conditions required before executing the Activity. 




HH Post-conditions required after executing the Activity. 




HHj Return the list of the requested business components. 




HHj Return all the views for the activity. 




HH Return the Activity start page. 



AFSubActivity 

The AFSubActivity component implements a sub-part of the overall activity 
business logic. The application developer creates a sub-activity component for each 
sub-part of a specific business activity by extended the AFSubActivity component. 
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As with activities, the sub-activity workflow sequence is pre-condition, execution 
and post-condition. 

Note: 

There may be zero or more sub-activities on an ASP Page. 
Methods 

The lAFSubActivity interface defines the access to the AFSubActivity component. 
This interface supports the following methods: 



Method Description 



Pre-conditions required before executing the sub- 
Activity. 

Execute the small grained business process logic. 
Post-conditions required after executing the sub-Activity. 
Declare that the current sub-activity has completed its 
work and should be deactivated when the currently 
executing method returns to the client. This method may 
call the setComplete method of MTS. 
Check that the business components requested for the 
sub-activity are present in the Activity context. The 
requested components are defined by the application 
developer through implementing the sub-activity abstract 
requestedObject method. 

Store the requested component names (as defined by the 
application developer). Store the passed in activity 
component reference. Store the sub-activity name. 
Return the sub-activity name. 

Return the reference to the activity component associated 
to the sub-activity. 
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Abstract Methods 



The application developer implements the following abstract methods in the 
business sub-activity component: 



Method 




Description 



Pre-conditions required before executing the sub- 
Activity. 

Execute the small grained business process logic. 
Post-conditions required after executing the sub- 
Activity. 

Return the requested business components for the sub- 
activity. 



AFCollection 

The AFCollection component is a general purpose collection component. The 
collection component can be used to store and retrieve a collection of COM 
components, integers or strings. 

Methods 



The IAFCollection interface defines the access to the AFCollection component. 
This interface supports the following methods: 



Method 




Description 



Number of elements in the collection component. 
Add an element to the collection component. 
Return the element at the requested index. 
Add a string element to the collection component. 
Return the string element at the requested index. 
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Add an integer element to the collection component. 




Return the integer element at the requested index. 
If collection component is storing integers, return true. 
If collection component is storing strings, return true. 
Remove all the elements from the collection component. 



AFVBActivityWrapper 

The AFVBActivityWrapper component enables the application developer to add 
Activities that are written in Visual Basic. 



Methods 



The IAF Activity, IAFContext, IAFEventListener and IAFVBActivityWrapper 
interfaces define the access to the AFVBActivityWrapper component. These 
interfaces support the following methods: 



Method 



Description 




Store the VB activity name, the starting page for the 
activity and the reference to the application developer's 
VB Activity component to the AFVBActivityWrapper 
component. 

Return a string containing all parameters to send to the 
next page. This string contains the names of all UI 
fields of the page and the JavaScript code needed to 
retrieve their values. Due to non-support of class 
inheritance by the VB language, the VB application 
developer must implement the getPageParameter logic 
supplied by superclass AF Activity for Java 
applications. The VB developer copies the required 
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logic from the VB Activity shell code file. 


receiveEvent 


Method called by the ReTA Session during an ASP 
start page event to enable the architecture to capture 
user entry from previous web page. The ReTA Session 
component holds references to all registered listeners 
(Activity components). Due to non-support of class 
inheritance by the VB language, the VB application 
developer must implement the receiveEvent logic 
suppnea oy superclass str siciiviiy jor java 
applications. The VB developer copies the required 
logic from the VB Activity shell code file. 


Start 


Start the activity. The application developer calls this 
method from the ASP page. 


uIFieldValue 


Return the business component value that is mapped to 
the specified UI field. Due to non-support of class 
inneniance oy ine vtf language, ine v rs application 
aeveioper musi implement ine uirieiu vdiue logic 
supplied by superclass AF Activity for Java 
applications. The VB developer copies the required 
logic from the VB Activity shell code file. 


/Yr Activity 




Stop 


Release the activity and all its associated instances. 
Calls the commit method. The application developer 
cdi is inis mcinou irom ine idol nor pd.ge ior me 
business activity. 


abort 


Gracefully abort the activity. Abort associated sub- 

jiptiviti pc RpmriVP' all T"f*ff*rf*Tir*pQ tr> ciih-n^tivitifc 

ClV^lI V 1 Llt/O. JVClliU V C all l t-lt-l t/llV'^O IU oULT atllVlUV/Oj 

business components and stateful UI components. 


commit 


Declare that the current activity and all its sub-activities 
have completed their work and should be deactivated 
when the currently executing method returns to the 
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plipnt Thic mpthnrl m c\\i fall thp QPtf^ornT"*! ptp mpthr^H 

V-zllt-llL- A lUo lllt/llIUl-1 11 id V V-/C111 Ult/ oV_/LV_vVJlll L/lt< Lt/ 111 t>tllVJV_l 

of MTS. (See MTS portion of the present description 
for more information^ 

1V/1 ill vi v iiiiwi uiuiivyii / 


retrieveUHnstance 


Retrieve a User Interface component instance from the 
UI context of the activity. 


ciuu i o u ii^oniext 


/\ciu ci Ljscr jjiteriaue component to tne ui context oi 
the activity. 


executeSubActivity 


Execute the sub-activity related to the current page for 
the Activity. Call the sub-activity precondition, 
execute anci postconuiiion ixLctnous. 


isPartOfActivity 


If the ASP name passed as a parameter is part of the 
activity, return true. This method calls the 
AFTrackingManager component of the ReTA Session 
framework in order to get the result. 


cnecjcr age/\u tnon zano 
ii 


/\sk tne tracKing onject related to tne activity to cnecK 

Hie pdgC atilllOIlZjCttlOIl ^UaCo Hie rVT 1 IdCl^ill^iVlalla^ei 

component of the ReTA Session framework). If the 

nQpr iq jiIIiywpH to apppw tViiQ ysaof* <jpt thp Piirrpnt nnop 
of thp artivitv with thp napp na^pd "naram pt pt 

\J1 Li. lw Civil V ilV Willi LI Iv l_J CI fc^V-/ L/UOuvU AO UCUCUllvlvl • 


getName 


Return the activity name. 


getFrameName 


Return the name of the frame where to display the 
encountered events. 


gc lO IcU IXT dgc 


IvClllIIl 11 1C olctllili^ pd^C Ol LI1C clL/tlvliy. 


gCHN CA LA c&gC 


TJf^fiirri \\*\ npYt t*\q crf^ frM* th^ r*i it*t*^ti1" q r*ti \/i tA/ V^qcftI pvn 
xvciu.ui uie next jjdgc 101 me isLiiiciii axsiiv ny 9 ucioeu on 

the current activity page saved in the AFTracking 

ohippt of thp apfivitv anH on thp action na<;<5pH a^ 

\J U \ C'V/ 1 \JX Lilt* dvll VllV CU1U v^l 1 LllO dv/HUll UooDvU OD 

parameter. 


getCurrentPage 


Return the current page. 


retrieveBOInstance 


Return requested business component from the activity 
business context. 


AddObject 


Add a business object (held by the activity's "business 
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object context" object). 


GetObject 


Return the instance of the requested business object 

iii&iu uy lilt- avu viiy o uuciiivjo \J vj\ \~>\^> l v^v-hii^ai. 

object). 


RemoveObject 


Remove the instance of the requested business object 

^VipIH Viv thp 5*r t ti\/it\/'Q ""hncinpcc nhippt pnntPYt" 

yllClU Ujr LUG dL/llVliy o UUolllCoa UUJGL/L 

object). 


\^ UI1 1 dlllorvC jr 


rhplH hv fhp pptivitv'^ "hn^inp^ nbippt rontpvt'* 

object), return true. 


GetKevs 


Return all business obiect "labels" (held bv the 
activity's "business object context" object). 


AFEventListener 




Getld 


Reference to the listener object. One listener object is 
associated with each registered Activity component. 



IAFVBActivity Interface Methods 

The application developer implements the following interface methods in the VB 
business activity component: 



Method 


Description 


CreateSubActivity 


Create a Sub-Activity. 


getRequestedObj ects 


Copy the requested objects for the activity from the 
Session context to the activity context. 


GetUIFieldValue 


Call getValueForUIField method of AFVBView class 
to implement logic. The VB developer copies this 
required logic from the VB Activity shell code file. 


capture 


Call capture method of AFVBView class to implement 
logic. The VB developer copies this required logic 
from the VB Activity shell code file 


getPageParameter 


Call getParameter method of AFVBView class to 
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implement logic. The VB developer copies this 
required logic from the VB Activity shell code file 
Pre-conditions required before executing the Activity. 
Post-conditions required after executing the Activity. 



AFView (AFVBView) 

The AFView class provides a mapping between a User Interface and a set of 
5 Business Components (the view maps one web page form to one or more business 
components). When the user requests the next web page, the previous web page 
values are passed along with the URL request. Upon starting the next web page, the 
Session framework invokes the receiveEvent method on the appropriate Activity 
component. The Activity component uses the View class to record, into the 
10 appropriate business component, the data entered by the user at the previous web 

page. Also, the View class obtains the current user interface field values for the next 
web page as requested by the application developer through ASP scripting logic. 

Note: 

15 

Multiple views can exist for a single ASP. Since a view contains a collection of 
mapped field, one view can be defined for each form of an ASP. 

Methods 

20 

The following AFView class methods are important for the application developer to 
understand: 



N4ethod 


Description 




Create a new AFView instance for the ASP page passed 




as parameter. The application developer calls this 




method from the implemented views method of the 




business activity component. 
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GetValueForUIField 


Return the value for the UI field mapped to an instance of 
a business component contained in the activity context. 
If the business component instance is not part of the 
activity, then return the default value for the UI field, 
rrom ine /vox page, me application aeveioper cans inis 
method to initialize the UI field values before submitting 
the web page back to the client machine. Note: for VB 
activities, this method is called by the VB business 
activity component 


AddBOMappLng 


Add a "UI field to business component attribute 
mapping" object to the view. The application developer 
calls this method from the implemented views method of 
the business activity component. 


GetParameter 


Return a string containing all parameters defined for this 
view to send to the next page. This string contains the 
names 01 an ui neius ior uns view 01 ine page ana me 
JavaScript code needed to retrieve their values. Called 
by the getPageParameter method of the AF Activity 
component. Note: for VB activities, this method is called 
by the VB business activity component. 


Capture 


Based on the parameters passed to the current Active 

OCI VCf rogC, UpU-d-LC LI1C UUolIlCbb C-UIIipUIlCIllb CUIiLctlllillg 

the values entered by the user from the previous page. 
The Activity framework implements this logic for the 
application developer. Note: for VB activities, this 
method is called by the VB business activity component 



AFViewBOMapping (AFVBViewBOMapping) 



The AFViewBOMapping component defines the mapping between a user interface 
entry field and the business component instances containing the value to display. 
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This class gets/sets an UI field value by getting/setting the business component 
instance contained in the activity context. Each mapped business component 
instance should implement the IAFEditable interface. This interface provides the 
setValue and getValue methods used to set and get values of the business component 
5 instance. 



Methods 



10 



The following AFViewBOMapping class methods are important for the application 
developer to understand: 



Method 



Description 



Create a new AFViewBOMapping instance defining a 
UI field to business component attribute mapping for an 
ASP page (parameters passed by the application 
developer). The application developer calls this method 
from the implemented views method of the business 
activity component. 

Return a string containing the parameters defined for 
this "UI field to business component mapping" to send 
to the next page. This string contains the name of the UI 
field mapped to the business component attribute for 
this view of the page and the JavaScript code needed to 
retrieve its value. Called by the getParameter method of 
the AFView component. The Activity framework 
implements this logic for the application developer. 
Based on the parameter passed to the current Active 
Server Page, update the business components containing 
the value entered by the user from the previous page for 
the mapped UI field. The Activity framework 
implements this logic for the application developer. 
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AFViewRadioButton BO Mapping (AFVBViewRadioButtonBOMapping) 



The AFViewRadioButtonBOMapping component defines the mapping between a 
user interface radio button field and the business component instances containing the 
5 value to display. This class gets/sets an UI field value by getting/setting the business 
component instance contained in the activity context. Each mapped business 
component instance should implement the IAFEditable interface. This interface 
provides the setValue and getValue methods used to set and get values of the 
business component instance. 

10 

Methods 



The following AFViewRadioButtonBOMapping class methods are important for the 
application developer to understand: 



Method 




Description 



Create a new 

AFViewRadioButtonBOMapping instance 
defining a UI field to business component 
attribute mapping for an ASP page 
(parameters passed by the application 
developer). The application developer calls 
this method from the implemented views 
method of the business activity component. 
Return a string containing the parameters 
defined for this "UI field to business 
component mapping" to send to the next 
page. This string contains the name of the 
UI field mapped to the business component 
attribute for this view of the page and the 
JavaScript code needed to retrieve its value. 
Called by the getParameter method of the 
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AFView component. The Activity 
framework implements this logic for the 
application developer. 


capture 


Based on the parameter passed to the 
current Active Server Page, update the 

Hiiqitipq^ pomnnnpntQ pnntainincy thp vjiIiip 

U UOlilvOd vUllXUUllvlilO V/V_/111C11 1 J_ll V CLLLl\s 

entered by the user from the previous page 
for the mapped UI field. The Activity 
framework implements this logic for the 
application developer. 



AFViewDynamicBOMapping (AFVBViewDynamicBOMapping) 

The AFViewDynamicBOMapping component defines the mapping between a 
dynamically created user interface field and the business component instances 
containing the value to display. This class gets/sets an UI field value by 
getting/setting the business component instance contained in the activity context. 
Each mapped business component instance should implement the IAFEditable 
interface. This interface provides the setValue and get Value methods used to set and 
get values of the business component instance. 

Methods 

The following AFViewDynamicBOMapping class methods are important for the 
application developer to understand: 



Method 


Description 


AFViewDynamicBOMapping 

AFVBViewDynamicBOMappi 

ng 


Create a new AFViewDynamicBOMapping 
instance defining a UI field to business 
component attribute mapping for an ASP page 
(parameters passed by the application 
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developer). The application developer calls this 
method from the implemented views method of 
the business activity component. 


getParameter 


Return a string containing the parameters 
defined for this "UI field to business component 
mapping" to send to the next page. This string 
contains the name of the UI field mapped to the 
business component attribute for this view of 
me page anti me j avaocripi coue neeoeo 10 
retrieve its value. Called by the getParameter 
method of the AFView component. The 
Activity framework implements this logic for 
the application developer. 


capture 


Based on the parameter passed to the current 

zYV^ll V t/ O t/1 V t/1 JT <Xf±\Z>y UyUulC Lilts Uliolllt/jO 

components containing the value entered by the 
user from the previous page for the mapped UI 
field. The Activity framework implements this 
logic for the application developer. 



AFViewTextAreaBOMapping (AFVBViewTextAreaBOMapping) 

The AFViewTextAreaBOMapping component defines the mapping between a user 
interface multi-line entry field and the business component instances containing the 
value to display. This class gets/sets an UI field value by getting/setting the business 
component instance contained in the activity context. Each mapped business 
component instance should implement the LAFEditable interface. This interface 
provides the setValue and getValue methods used to set and get values of the 
business component instance. 



Methods 
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The following AFViewTextAreaBOMapping class methods are important for the 
application developer to understand: 





Method 


Description 




AFViewTextAreaBOMapping 


Create a new AFViewTextAreaBOMapping 




AFVBViewTextAreaBOMappi 


instance defining a UI field to business 




ng 


component attribute mapping for an ASP page 






(parameters passed by the application 






developer). The application developer calls this 






method from the implemented views method of 






the business activity component. 




getParameter 


Return a string containing the parameters 


ill 




defined for this "UI field to business component 






mapping" to send to the next page. This string 






contains the name of the UI field mapped to the 


u 




business component attribute for this view of 


== 




the page and the JavaScript code needed to 






retrieve its value. Called by the getParameter 






method of the AFView component. The 


Tsar 

%u 




/\uuviiy irdmcworK. linpiciiiciiib uiib lugiL/ lur 






the application developer. 




capture 


Based on the parameter passed to the current 






Active Server Page, update the business 






components containing the value entered by the 






user from the previous page for the mapped UI 






field. The Activity framework implements this 






logic for the application developer. 



5 AFViewDropDownBOMapping (AFVBViewDropDownBOMapping) 



The AFViewDropDownBOMapping component defines the mapping between a user 
interface drop down field and the business component instances containing the value 
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to display. This class gets/sets an UI field value by getting/setting the business 
component instance contained in the activity context. Each mapped business 
component instance should implement the IAFEditable interface. This interface 
provides the setValue and getValue methods used to set and get values of the 
business component instance. 

Methods 

The following AFViewDropDownBOMapping class methods are important for the 
application developer to understand: 



Method 


Description 


AFViewDropDownBOMapping 

AFVBViewDropDownBOMappi 

ng 


Create a new AFViewDropDownBOMapping 
instance defining a UI field to business 
component attribute mapping for an ASP page 
(parameters passed by the application 
Qcveioperj. ine tippiicd-iion ucvciopcr i/diia 
this method from the implemented views 
method of the business activity component. 


GetParameter 


Return a string containing the parameters 
defined for this "UI field to business 
component mapping" to send to the next page. 
This string contains the name of the UI field 
mapped to the business component attribute 
for this view of the page and the JavaScript 
code needed to retrieve its value. Called by 
the getParameter method of the AFView 
component. The Activity framework 
implements this logic for the application 
developer. 


Capture 


Based on the parameter passed to the current 
Active Server Page, update the business 
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components containing the value entered by 
the user from the previous page for the 
mapped UI field. The Activity framework 
implements this logic for the application 
developer. 



AFViewUIListBOMapping (AFVBViewUIListBOMapping) 

The AFViewUIListBOMapping component defines the mapping between a user 
5 interface Selected List field and the AFCollection component instance containing the 
values to display. This class gets/sets an UI field value by getting/setting the 
AFCollection component instance contained in the activity context. 

Methods 

10 

The following AFViewSelectedListBOMapping class methods are important for the 
application developer to understand: 



Method 




Description 






■ Create a new AFViewUIListBOMapping 






9 instance defining the selected list box field 






H name (and optionally, the name of a sub-activity 






H to execute on the "capture" method invocation) 






H for an ASP page (parameters passed by the 






H application developer). The application 






■ developer calls this method from the 






H implemented views method of the business 






■ activity component. 






1 Return a string containing the parameters 






■ defined for this mapping to send to the next 






H page. This string contains the name of the 






1 selected list box field and the JavaScript code 
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needed to retrieve its value. Called by the 
getParameter method of the AFView 
component. The Activity framework 
implements this logic for the application 
developer. 

Based on the parameter passed to the current 
Active Server Page, update the AFCollection 
component containing the values entered by the 
user from the previous page for the selected list 
box field. The Activity framework implements 
this logic for the application developer. 



AFViewThumbNailBOMapping (AFVBViewThumbNailBOMapping) 

5 The AFViewThumbNailBOMapping component defines the mapping between a user 
interface ThumbNail (iconic pushbutton) field and the business component 
instances containing the value to display. This class gets/sets an UI field value by 
getting/setting the business component instance contained in the activity context. 
Each mapped business component instance should implement the IAFEditable 
1 0 interface. This interface provides the setValue and getValue methods used to set and 
get values of the business component instance. 

Methods 



1 5 The following AFViewThumbNailBOMapping class methods are important for the 
application developer to understand: 



Method 



mm 



Description 



sate a new AFViewThumbNailBOMapping 
instance defining the selected list box field 
name (and optionally, the name of a sub- 
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activity to execute on the "capture" method 
invocation j ior dn nor page ^jjarameiers 
passed by the application developer). The 
application developer calls this method from 
the implemented views method of the 
business activity component. 


GetParameter 


Return a string containing the parameters 
defined for this mapping to send to the next 
page. This string contains the name of the 
selected list box field and the JavaScript code 
neecea to retrieve its value, v^anea oy tne 
getParameter method of the AFView 
component. The Activity framework 
implements this logic for the application 
developer. 


capture 


Based on the parameter passed to the current 
Active Server Page, update the business 
components containing tne vaiue entered oy 
the user from the previous page for the 
mapped UI field. The Activity framework 
implements this logic for the application 
developer. 



SITE SERVER FRAMEWORK DESIGN 

5 

Figure 9 illustrates a method 900 for accessing services within a server without a 
need for knowledge of an application program interface of the server. A role 
container is first created in operation 902. In operation 904, a role class is defined 
and in operation 906 an attribute for the role class is generated which includes a 
10 default start page attribute. In the role container, a role object is made in the role 
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class with the default start page attribute associated therewith in operation 908. A 
uniform resource locator is selected in operation 910 for the default start page 
attribute. 

5 A plurality of attributes may be generated for the role container. Further, these 
attributes may include a default start page attribute, a user name attribute, a user 
identifier attribute, and/or a role name attribute. 

A user may be assigned to the role object. Optionally, a plurality of role objects may 
10 be made in the role class with each role object having a unique default start page 

associated therewith. As another option, an operator role object and a customer role 
object may be made as well. The following material provides a more detailed 
description of the above-described method. 

1 5 This portion of the present description details the ReTA Site Server framework 

design from the perspective of the application developer. The role of this framework 
is to provide components that allow one to integrate the ReTA custom frameworks 
with Site Server. This provides a user component connecting to Site Server, but does 
not require knowledge of the Site Server API itself to integrate with Site Server. 

20 

Site Server Framework Execution Architecture 

To connect to Site Server a COM component (UserSS) is used to make calls to Site 
Server's API. The ReTA UserSS component allows the developer to access Site 
25 Server's Personalization and Membership Services without any knowledge of Site 
Server's API. 

Figure 9.1 illustrates Site Server Framework Architecture. This figure shows the 
different layers in the Site Server framework architecture. The UserSS COM 
30 component 930 connects to Site Server 932. The UserSS component uses Site 

Server's Personalization and Membership; UserSS also performs security as well on 
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a Commerce Site. The ReTA framework 934 uses the UserSS layer to provide access 
to Site Server. The UserSS layer provides the following benefits: 

• It insulates the application developer from Site Server's API. 

• It provides functionality for using Site Server's Personalization and 
Membership Services. 

Site Server Framework Development Architecture 



10 



UserSS Interface Methods 

The UserSS component interfaces with the SiteServer personalization and 
membership services. This component uses SiteServer to handle the user security, 
role and preferences. 



15 Methods 



20 



The IAFUser, IAFUserPreferences, and LAFUserRole interfaces define the access to 
the 

AFUserSS component. These interfaces support the following methods: 



Method 




Description 



This method initializes the UserSS Component. 
This method returns a string value representing the user 
id. SiteServer's API is used to obtain this value. 
This method returns a string value representing the user's 
name. SiteServer's API is used to obtain this value. 
This method returns a string value representing the user's 
real name. SiteServer's API is used to obtain this value. 
This method takes as input a preference label and returns 
a string value representing the user's preference value. 
SiteServer's API is used to obtain this value. 
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Method 


i rus memou dcccpis two pdrdincicrb foiling 
thePrefLabel, String thePrefValue). The preference is set 

Uldl IilaltliCo LilCi xCUUdUCl pddbCU ill. 
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mm -j^jg me thod returns the current user's role name. 




This method takes as input a preference label returns the 
current user's role preference value. 




This method sets the current user's role preference 



Site Server Personalization and Membership/ Directory Membership Manager 

5 This portion of the description describes the required settings in Site Server 

Commerce Edition used by the ReTA frameworks. This portion of the description 
also describes the steps involved in creating the required settings. 

ReTA Required Settings 

10 

The Membership Directory Manager is used to manage administration and access 
control for Membership Directory objects, including users and groups, and schema 
objects. The Membership Directory stores objects used by all Site Server features. 

15 The ReTA UserSS framework requires schema objects to be created. The schema 
objects required by the ReTA Frameworks are: Roles container 1000, RoleName 
attribute 1002, username attribute 1004, webUserld attribute, and a Role class. 
Figure 10 illustrates schema attributes and classes, with class "Role" and attribute 
"RoleName" shown. 

20 

Required Container, Class, and Attribute Setup Instructions 
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Users may have different roles within the system. In Site Server ReTA takes 
advantage of this by creating a Container "Roles" that contains different "Roles" or 
different objects of the class "Role". These "Roles" have attributes such as a default 
start page. Therefore different "Roles" (different objects of the class "Role") such as 
5 "Operator" or "Customer" may both have a default start page attribute that may point 
to different URL's. 

The Site Server portion of the present description details how to setup a Container, 
Class, and Attributes. The following lists the steps involved to setup the required 
10 attributes for the ReTA Frameworks to integrate with Site Server. 

Using the Site Server Console, right click on the Membership Directory Manager 
folder. 

15 • Select New - Container, then type in Roles for the Container name. 

• Figure 11 illustrates the creating of Container "Roles". Right click on 
Membership Directory Manager 1100 and select New 1102 - Container 
1104. After creating the Container "Roles", create the attribute 

20 "DefaultStartPage", "username", webUserld", and "RoleName" in the 

Schema. To create these attributes expand the Admin Container under the 
Membership Directory Manager. 

• Right click on the Schema folder 1200 and select New 1202 - Attribute 1204 
25 (See Figure 12) 

• Define the class "Role" the same way by right clicking on Schema and 
selecting New - Class. 

30 • Select the "common-name" as a required attribute, also select the 

"DefaultStartPage" as an attribute but do not make it required. 
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• Create the Roles for our Application, "Operator" and "Customer". 

• See Figure 13, which illustrates the adding of different Roles. Right click the 
5 Roles Container 1300 under the Membership Directory Manager folder 1302. 

Select New 1304 - Object 1306, select "Role" for the class of object to 
create, type the name of the object i.e. "Operator", add the attribute 
"DefaultStartPage" by clicking Add Attribute button and enter the URL. 

10 • Once these have been created, a member of the system can be assigned to a 

"Role" and the ReTA Framework required attributes can be added to the 
user. Figure 14 illustrates an example showing the attributes 1400 of 
member "Joe Bloggs" (Note RoleName). 

15 

EVENT HANDLER FRAMEWORK DESIGN 

Figure 15 illustrates a method 1500 for handling events in a system. In operation 
1502, an event which includes metadata is recognized. Next, in operation 1504, the 

20 metadata of the event is read and, in operation 1506 a table look-up is performed for 
information relating to the event based on the metadata. The information includes a 
severity of the event and further information such as a type of the event, and a 
location where the event occurred. In operation 1508, a message is displayed either 
in-line in a currently depicted display or in a separate display based on the severity of 

25 the event. 

Optionally, the event may additionally be indicated to components of the system 
other than the component in which the event occurred. The type of the event may be 
a database error, an architecture error, a security error, and/or an application error. 
30 Further the location of the event may be at least one of a method and an object where 
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the event occurred. Also, the information may further relate to a code associated 
with the event. 

The message may include the information relating to the event. In additionally, the 
5 message may also include a time during which the event occurred. Further, the 

message may include a string altered based on a user profile. The following material 
provides a more detailed description of the above-described method. 

This portion of the present description details the ReTA Event Handler framework 
10 design from the perspective of the application developer. The role of this framework 
is to provide services to manage the informational, warning and error events that an 
application may raise. These services include: 

Presenting the user with an understandable event explanation. 
Informing other Components when errors happen (for example to restore 
transactional data to a consistent state) using a Publish/Subscribe mechanism. 
Logging informational, warning and error event messages. 

The Event Handler uses an Event Reference meta-data database table to maintain 
20 information about the types of events in an application and the policy for dealing 
with them. This gives a flexible approach and the event messages, the severity and 
other policies for the events can be changed during operations. 

Phase 2 - Event Handler Enhancements 
25 For phase 2, Event Handler consists of the following enhancements: 

• The Event Handler framework is componentized. It no longer maintains 
references to any of the other framework components. Internally, the Event 
Handler continues to use the persistence light framework to log events to the 
database. 

30 • As in phase 1, it can be used as a Session level component. As an 

enhancement for phase 2, the Event Handler framework can be used as a 




-89- 

stateless page level component. This means that a new instance of the 
component is created at the beginning of each ASP page and is released at 
the end of each page. 

• The Event Handler framework no longer requires Event Collection 

5 components as parameters to implement event handling, which only allowed 

handling events at the page level. In phase 2, the new method 
"processSingleEvent" takes the parameters of a single event as its input, 
which enables handling events at the occurrence of the event. 

• As in phase 1 , The Event Handler can format error descriptions in HTML. As 
10 an enhancement for phase 2, the Event Handler can return the error message 

as a string and enables the application to implement client specific formatting 
(HTML or other). 

• The process event method no longer calls the ASP redirect method. Instead, 
it returns the severity level code. On return, the application logic determines 

1 5 whether to redirect to the error page or display the error in-line in the current 

page. 

• The Translator is no longer a separate component. Instead, it is a Java class 
inside the Event Handler component. 

20 Event Handler Framework 

Description 

With reference to Figure 15.1, the ReTA Event Handler Framework 1530 manages 
25 the informational, warning and error events that an application raises. The following 
describes the ReTA event handling sequence: 

1) The event (s) occurs 

• When an event occurs the following event information is recorded: 

30 o event type (defined in database Event Reference table), for example: 

■ database error 
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■ security error 

■ architecture error 

■ application error 
o event location: 

5 ■ method and object name where the event occurred 

o event code (sub-type): 

■ SQL error code, 

■ application error code - mapped to a unique description in the 
database 

10 ■ architecture error code - mapped to a unique description in the 

database 

w o event context: 

■ Any relevant information about when the event occurred 
^ stored in a tagged 

H 15 ■ name value pair format. Eg. 

q [OrderNumber=l ] [Description="Repeat Order"] 

• If the event occurs within a Java class inside a COM object, use the Java 
O exception mechanism by throwing an AFEventException. If the exception 
Jj occurs elsewhere, call the add method on the Event Collection passing the 

20 event information. 

• Each method defining a COM component interface captures these event 
exceptions and either adds them to an Event Collection component or 
directly calls a method on the Event Handler component. 

• Events are processed from the ASP page by calling the process method of the 
25 Event Handler. Events can also processed from the point where the event 

occurred by calling the "processSingleEvent" method of the Event Handler. 
2) The Event Handler processes the event(s): 

• For each event, set the user id and current page 

• For each event, retrieve the event severity from the event handler's 

30 "translator" class. This class caches in memory all event descriptions and 

severity levels retrieved from the event reference database table. 
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• Add the events to the Event Handler context. 

• Implement the persistence policy on the events - events are logged in a 
batch. 

• Return the severity of the most severe event to the caller. The caller is 
responsible for either redirecting to the error page or displaying the event in- 
line in the Current Page. 

3) Display the event: 

• Use the Event Handler component to generate the error message. This 
message can contain context information describing when the event was 
created. 

• Create the HTML formatting and display the event message. 

• The Error Message is either displayed in-line in the current page or in a 
separate error page. 

4) The Event Handler generates error display message: 

• Get the event with the highest severity level from its event context. 

• If the most severe event is "fatal", display the user description associated 
with the event. Broadcast a SESSION_ABORT message using the 
Publish/Subscribe mechanism. Any component that is interested in these 
events must implement the lAFEventListener interface and register with the 
Event Broadcaster component as interested. To do this they call the 
addListener method of the Event Handler component. 

• If the most severe event is "logical unit of work", display the user description 
associated with the event. Broadcast an ACTIVITYABORT message using 
the Publish/Subscribe mechanism. 

• If the most severe event is "warning", display the user description associated 
with the event. 

• Note: The user event descriptions are retrieved from the database either on 
session start or on demand and are cached by the Translator class. When 
generating the event description page, this description is requested from the 
Translator. Event descriptions can have embedded context parameters. 
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When generating the event description page, the event handler replaces these 
parameters with their values specified when creating the event. 

Database Tables 

The Event Handler uses two database tables: The T_AF_EventReference 1534 is a 
static table that describes the Event meta-data, giving the policies for each event 
type. The policies include: 

• The message that is displayed to the user. These messages can contain data 
from the Context that is included when the event is generated. 

• The severity of the event. The severity can be Information, Warning, Error 
and Fatal. 

• Whether to persist the event in the database event log. 

The T_AF_EventLog 1536 contains the log of the events that occurred. The 
following information is logged: 

• Event type and Code 

• The location where the event occurred. I.e. ASP, Object name and Method 
Name. 

• The user that raised the event. 

• The datestamp. 

• The context information giving other information about what caused the 
event. 

Services 



The Event Handler Framework provides the following services: 



Service 


Detail 




HH Create event 




^^^HJ Maintain event reference 




^HHH Information 




^^^H Warning 
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Service 


Detail 1 




Logical Unit of Work 
Fatal 


Display events 


Translate event 
Inform user 


Persist event 


Log event to database 


Components and Classes 




The Event Handler Framework implements these services through the following 
COM and Class objects: 


Component 


Service 


AFEventHandler 


Handle events generated by the system 


AFEventCollection 


Contains a collection of events (AFEventException) 


AFResult 


Defines the result returned by a method execution. 


Class 


AFEventException 


Contains single event information. 


AFEventReference 


Contains event reference information from database table 
T_AF_EventReference 


AFTranslator 


Returns event reference information based on the event 
type and event code. 

Note: multi-language translation functionality not 
implemented 


AFPersistableEvent 


This is the persistable class containing the information for 
a single event. It is a sub-class of the Persistence 
PersistableObj class. The persistance mechanism can 
insert, delete, select and update objects of this class in the 
database. This class persists event information the 
T_AF_EventLog table. 
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These components and classes are described in detailed in the following sub-portions 
of the description. 

AFEventHandler 

5 

The AFEventHandler component 1538 handles the events generated by the system. 
Depending on the severity level, the event handler may redirect the user to another 
ASP page and may abort the activity or session. The event handler also determines 
whether and when to log an event. 

10 

Methods 

The IAFEventHandler interface defines the access to the AFEventHandler 
component. This interface supports the following methods: 



Method Description 




Persist all the events stored by the event 
handler to the database. 
Gather associated event information. Call the 
add method to persist the events in the event 
log. Return the event severity to the caller. 
This method is called either from the ASP page 
or from a Java class where the Event was 
trapped. 

Examine the events and gather associated 
event information. Call the add method to 
persist the events in the event log. Return the 
event severity of the most severe event to the 
caller. The application developer calls this 
method from an ASP page to check the events 
generated during the scripting logic execution. 
Return generated HTML which describes the 
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Method Descri pti on 





severity of the error, gives the target URL 
(depending on the severity - previous page, 
activity start page or home page) and an error 
log. i ne xivcni rianu.ier pdgc cans tiiib 
method. 


Initialize 


The application developer can invoke this 
method to load all event descriptions in 
memory ^normdiiy usea 10 speed access ciuong 
user session). 




describes the severity of the error. This allows 
the application to determine the HTML 
formatting used to display an error. 


HasFatalError 


If the event handler contains at least one fatal 
error, returns true. 



AFEventCollection 

The AFEventCollection component contains a collection of events. 
Methods 

The IAFEventCollection interface defines the access to the AFEventCollection 
component. This interface supports the following methods: 



Method 


Description 


SpecifySubActivity 


Attach the sub-activity to all events contained 
in the event collection. 


GetSubActivity 


Return the sub-activity attached to all events 
contained in the event collection. 


Add 


Add an event to the event collection. 
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Return the requested event. 



Return the number of events in the collection. 
Clear all the events from the collection. 



AFResult 



The AFResult component defines the result return by a method execution. 



Methods 



10 



The IAFResult interface defines the access to the AFResult component. This 
interface supports the following methods: 



Method 




Description 



Return the result. 



Add a result. 



Add the result as a string. 



Return the result as a string. 



AFTranslator 

The AFTranslator class returns event reference information (based on the event type 
1 5 and event code. 

Methods 



20 



The AFTranslator class has the following methods: 



Method 




Description 



Return the description for this event. 
Return the severity level for this event. 
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GetEventPersist 


Return flag that defines whether to persist this 
event. 




T?*=»tiirn tV»f* i i cpr Hp^printi nn for triic f^vf^nt ' 1 hiQ 

description is displayed to the user. 


GetDescription 


Return the description for this event. This 
description is user by the technical support 
team to analyze error. 


Start 


Initialize component. 



AFEventException 

5 The AFEventException class contains the event exception information and is added 
to the AFEventCollection component for processing by the AFEventHandler 
component. 

Methods 

10 

The following AFEventException class methods are important for the application 
developer to understand: 



Method 


Description 


AFEventException 


Create the event exception class and populate 




it with 




event type: 




database error 




Java error 




security error 




architecture error 




application error 




event location: 




method and object name where the event 



-98- 





occurred 




event code (sub-type): 




SQL error code, 




Application error code - mapped to a unique 




description in the database 




/\rcru lecture error coae - mappec to a unique 




Hf* sprint inn in thp HataHa^p 




event context: 




value of specific object 


AddToCollection 


Add the current event to an event collection. 



AFEventReference 

The AFEventReference component 1540 contains the event reference information 
that is defined by the application through database table T_AF_EventReference. 
The architecture reads the event reference data into memory on session start. 



T AF EventReference: 



Column name 


Description 


Id 


Unique id 


Type 


The event type 


Code 


The event code 


SeverityLevel 


The event severity level: 

1 : Information 

2 : Warning 

3 : Abort the activity 

4 : Fatal, close the session 


Persist 


1 : if the event should be persisted in the event log. 
0 : if the event should not be persisted 
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Event description shown to the user. This description can 
contain contextual information, which is specified by adding tag 

rX^o »"Q m ^t^i^Wcim /^l in flip rlf*cf*i"intir*n T" n P'Cf* tcicrc qtv* t*<=>r^ \ 
ll&C I^JT dl dill CI CI IN dl I1C J 111 L11C ILCol/l IJJLlUil. A. llCoC lugo cLL C IGJJiClVCU 

bv the event framework when disnlavine the event to the user 




Language of the description. This may be used by the multi- 
language framework when developed. At this time, set to 
'English'. 




Event context default value. 



AFPersistableEvent 

The AFPersistableEvent 1542 contains the event information captured during the 
application execution that is persisted to the database table T_AF_EVENTLOG. 



T AF EVENTLOG: 



Column name 

M 


Description 




The event type 




The event code 




The event severity level: 

1 : Information 

2 : Warning 

3 : Abort the activity 

4 : Fatal, close the session 




Name of Sub Activity where event occurred. 




Name of class method where event occurred. 




Name of class where event occurred. 




Name of ASP page where event occurred. 
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Event context default value. 


ID of user logged in when event occurred. 







USER FRAMEWORK DESIGN 

5 

Figure 16 depicts a method 1600 for managing user information. A site server is 
provided in operation 1602. The side server has information stored on it including 
preferences, roles, and details relating to users. A database separate from the site 
server is provided in operation 1604. The database has information stored thereon 

10 including preferences, roles, and details relating to the users. In operation 1606, an 
identity of one of the users is authenticated. A single interface is displayed in 
operation 1608, which provides the user access to both the site server and the 
database upon authentication of the identity of the user. In operation 1610, the user 
is allowed to view and change the information that is stored on the site server and 

15 , the database and that is associated with the user. The single interface is tailored in 
operation 1612 based on the information associated with the user. 

The identity of the user may be authenticated by verifying a user name and a 
password, a secure sockets layer (SSL) certificate, and/or a log-in form. Further, the 
20 preferences relating to the users may include a currency in which monetary values 
are displayed and a language in which text is displayed. Also, the roles relating to 
the users may include a customer, a manager, and an employee. Additionally, the 
details of the users may include a user name and a legal name. The following 
material provides a more detailed description of the above-described method. 

25 

This portion of the present description details the ReTA User framework design 
from the perspective of the application developer. The primary role of this 
framework is to provide services that allow the application developer to maintain 
user preferences, roles and security. 



-101- 



In regards to security, the User framework provides User Authentication services 
through any of the standard Internet Information Server security methods: 

• Username/Password sent in clear text. 
5 • SSL Certificates 

• Windows NT Challenge/Response (Intranet only) 

• HTML Forms login (Site Server version only) 

Once the user has been authenticated, the User framework provides services for 
10 accessing: 

• User information - NT username, Real Name. 

• User Preference information - For example Language, Currency (These are 
configurable) 

• User Role information (e.g. Customer, Manager, Employee) 
15 • User Role Preference information 

There are two implementations of the User Component: One is database driven and 
the other interfaces with Site Server Personalization and Membership directory. 

20 User Framework 

Description 

With reference to Figure 16.1, the User framework 1630 enables two approaches to 
25 maintaining user information. The framework supports two approaches by exposing 
a single set of interfaces that can be used by either of the two user framework 
components. With the AFUserSS component 1632, the framework interfaces with 
the Microsoft Site Server products Personalization and Membership Directory. For 
this user component, SiteServer holds and manages user information. With the 
30 AFUserDB component 1634, the framework interfaces with database tables. For 
this user component, database tables define the user information. 
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Services 



The User Framework provides the following services: 



Service Detail 




5 

Components 



The User Framework implements these services through the following COM 
objects: 



Component 


Service 




user information maintained through the following 




^^^^■j database tables. 




T_AF_USERNAME, 




T AF USERPREFERENCES 




T_ A F_U SER ROLES 




User information maintained through SiteServer. 



10 

These components are described in detailed in the following sub-portions of the 
description. 

AFUserDB 



15 
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The AFUserDB component holds the user role, preferences and details retrieved 
from the database. When created the user component retrieves the user NT login 
name, user details and constructs the user preference and user role objects. 



5 Methods 



The IAFUser, IAFUserPreferences and IAFUserRole interfaces define the access to 
the AFUserDB component. These interfaces support the following methods: 



Method 




Description 



This method retrieves the user's NT name, user details 

from the database, constructs the preference object and 

constructs user's role object. 

Returns the user id. 

Returns the user's NT account name. 

Returns the user's real name. 

Returns user's preference based on label passed to this 
method. 



ncT 



This method sets the user's preference to the 2 
parameter passed in. 
Returns the user's role ID. 
Returns the user's role name. 



Returns role preference. 



This method sets the current user's role preference 



10 



AFUserSS 



15 



The UserSS component interfaces with the SiteServer personalization and 
membership services. This component uses SiteServer to handle the user security, 
role and preferences. 
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Methods 



The lAFUser, IAFUserPreferences, and IAFUserRole interfaces define the access to 
the AFUserSS component. These interfaces support the following methods: 



Method 




Description 



lis method returns a zero integer. It is here for 
compatibility with the UserDB component. 
This method returns a string value representing the user 
id. SiteServer's API is used to obtain this value. 
This method returns a string value representing the user's 
name. SiteServer's API is used to obtain this value. 
This method returns a string value representing the user's 
real name. SiteServer's API is used to obtain this value. 
This method returns a string value representing the user's 
preference. SiteServer's API is used to obtain this value. 
This method accepts two parameters (String 
thePrefLabel, String thePrefValue ). The preference is set 
that matches the "thePrefLabel" passed in. 
This method returns the current user id. 
This method returns the current user's role name. 
This method returns the current user's role preference. 
This method sets the current user's role preference 



PERSISTENCE FRAMEWORK DESIGN 



Figure 17 illustrates a method 1700 for managing business objects in a system that 
10 includes a plurality of sub-activities which each include sub-activity logic adapted to 
generate an output based on an input received from a user upon execution, and a 
plurality of activities which each execute the sub-activities in a unique manner upon 
being selected for accomplishing a goal associated with the activity. First, in 
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operation 1702, an identifier and a reference to a business object are received from 
one of the sub-activities upon the execution thereof. In operation 1704, a database is 
accessed and data from the database is retrieved based on the identifier. The 
business object is created and populated with the data retrieved from the database in 
5 operation 1706. 

The data may be stored on the database in tables. Further, the created business 
object may replace an existing business object. Additionally, the identifier may 
identify a customer and the business object may be a customer object. Also, a 
10 business object referenced by one of the sub-activities may be removed upon the 
execution thereof. 

The business object may be a Visual Basic business object. In another aspect of the 
present invention, the business object may be a Java business object. The following 
15 material provides a more detailed description of the above-described method. 

This portion of the present description details the ReTA Persistence framework 
design from the perspective of the application developer. The role of this framework 
is to provide services that interact with application database(s) to create, retrieve, 
20 update and delete business objects. 

Persistence Framework 

Description 

25 

The ReTA Persistence framework provides a transparent and flexible mapping of the 
business object attributes to relational database tables. To implement this "business 
object to database table" mapping, the framework is tightly integrated with all 
business objects. The framework exposes abstract methods that the application 
30 developer implements in the business objects. In contrast with the other ReTA 

frameworks, the Persistence framework is not implemented as a separate component. 
The Persistence framework is a set of local language classes available in Java or 
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Visual Basic. Figure 17.1 shows a Sub Activity component 1730 using the 
Persistence framework 1732 to retrieve a Customer Object 1734 from the Database. 



Services 



The Persistence Framework provides the following services: 

Uncouple database connection from application 




Map an object to a database table 



Trigger queries on objects 
Easily iterate through the results 



Optimistic locking 



Encode Database User Name and Password 
Note: Encoding implemented only once (as part of 
system set up). 

Decode Database User Name and Password 
Note: Used by persistence framework during all 
database accesses. 



Classes 



The Persistence Framework implements these services through the following Java or 
Visual Basic Classes: 



Java Class 


Service 




HHj This is the superclass of all Java Persistable Objects in the 




application. Application developers create a subclass for 




each Business Object and implement all the abstract 




methods that this class defines. 




HH Provides the mapping between the business object and its 




associated database table and manages the database 
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connection. 



Visual Basic Class 


Service 




^^MThis is the interface class that all Persistable VB must 




implement. Application developers create a subclass for 




each Business Object and implement all the methods that 




this class defines. 




Provides the mapping between the business object and its 
associated database table and manages the database 
connection. 



These classes are described in detailed in the following sub-portions of the 
description. 

5 

AFPLPersistableObj 

The AFPLPersistableObj abstract class contains methods called by the application 
developer objects to manage attribute values common to all persistable business 
10 objects (user id and last update timestamp). In addition, the AFPLPersistableObj 
class represents the superclass of a persisted object. In order to persist a business 
class; the application developer extends AFPLPersistableObj and implements the 
AFPLPersistableObj abstract methods. 

15 The AFPLPersistableObj defines the following methods: 



Method 


Description 




BMBHTReturn the column names common to all 




^^^^H persistable business objects (user id and last 




^^^H update timestamp). The application developer 




invokes this method from the constructor 




^^^H method of a business object. 
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Method 


Description 


aaarersisted Attributes 


Return attributes common to all persistable 
business objects (user id and last update 
timestamp). The application developer 
invokes this method from the 
getPersistedAttributes method of a business 
object. 


isEqual 


Abstract method that all Business Objects must 
implement. If the passed in attribute is one of 
the attributes common to all persistable 
business objects (user id and last update 
timestamp), compare the passed in value to the 
currently held attribute value. The application 
developer should also invoke the superclass 
isEqual. 


newFrom 


Abstract method that all Business Objects must 
implement. Populate the Business Object using 
the result set passed as an attribute. The 
application developer should also invoke the 
superclass newFrom method to populate the 
Userld and lastUpdate attributes. 


attnouteLret 


Abstract method that all Business Objects must 
lmpieineni. xveiuin me vdiue oi me dunouie 

UdooCLl <Xi> Ual ell 11C LCI 


dill lUUlCoCl 


111C111UU 11 Id I dll -DUolllCoo \_VUJCL/Lo illUol 

imnlement Set the value of the attribute nassed 
as parameter 


setUserld 


Set the user id value 


getUserld 


Return the user id value 


setTimeStamp 


Set the last update timestamp value 


getTimeStamp 


Return the last update timestamp value. 
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Method 


Description 


setUserldTimeStaroptoObj 


Adds the last update timestamp value and user 
id to the passed in persistable business object. 
The application developer invokes this method 
from the setUserldTimeStamptoObj method of 
a business object. 


getColumnNaraes 


Return the database table column names. 


getPersistedAttributes 


Return all the attributes to persist. The 
application ueveioper mvoKcs ine 

cla^ to ac\(\ n^pr iH anH la^t unrifitfi tirnfi^tamr) 

vluOO LU ClVJ.\~l UOvl X\J- CXIIU- I CIO L UL/UuLv IIIIIWOICUIIU 

attributes. 


aetTC evNTam 

UVv j L ^% CI J- J. IvO 


Return the nrimarv Icev field name 


getKeyValues 


Return all the primary key values. 


gcuvey/\iiriDuit v cuiur 


i rn \/pptnr f^i q11 l^f*\/ Qttnr^ntp'C 
rvciuiu vcL/UJi ui <tii ivcy cLlLIlUUlCo. 


getKeyAttributes 


Return the array of all key attributes. 


geii aDiciName 


&t~nim 4"V\ ^ noma ^"V^ /lotoKora f Qnla 

tveiurn ine name oi ine oaiaoase iauie 
associated with this business object. 


columnList 


Returns a comma-separated list of all columns 
corresponaing wiin ims ciass. 


attributesForlnsert 


Returns a comma separated list of attribute 

\^a1nAC fr\i* ^! f~^T incprt pntnm QriH 
VdlUCo lUi OyLi lIloCI I V/vJlIillldllLl. 


attributesForUpdate 


Returns a comma separated list of attribute 
name = attribute value pairs for SQL update 
command. 


conditionForUpdateRemove 


Returns the 'where 1 clause for SQL update or 
remove command (both are equal). 



AFPLExtent 
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The AFPLExtent class provides the mapping between the business object and its 
associated database table. In addition, the AFPLExtent class represents the domain 
defined by the visible part of the database table for the specified user. This class 
holds the passed in database URL, username and password used during the access to 
5 the database. Lastly, the AFPLExtent class manages the database connection. 

Methods 

The AFPLExtent class implements the following methods used by the application 
10 developer from business factory objects: 



Method Description 



Return all business objects matching the search 
criteria. 

Update all business objects matching the 
search criteria 

Remove all business objects matching the 

specified criteria 

Insert new business object(s) 




VBPersistObj 

1 5 The VBPersistObj interface class contains methods that need to be implemented on 
every VB Business Object. 

The application developer implements the following methods from their business 
object: 

instance of that class using the 
resultset passed as parameter 
Returns the value for the attribute passed as 



Method 
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Method 




Description 






HH parameter. 






jj^H Sets the value for the attribute passed as 






parameter. 






Return the database table column names. 






Wgtm Return the Table Name where this class is 
^^^H stored in the database 






Returns a comma separated list of attribute 
values for SQL insert command. 






HH| Returns a comma separated list of attribute 
name = attribute value pairs for SQL update 
command. 






HH Returns the 'where* clause for SQL update or 
remove command (both are equal). 



VBExtent 

The VBExtent class provides the mapping between the business object and its 
5 associated database table. In addition, the VBExtent class represents the domain 
defined by the visible part of the database table for the specified user. This class 
holds the passed in database URL, username and password used during the access to 
the database. Lastly, the VBExtent class manages the database connection. 

10 Methods 

The VBExtent class implements the following methods used by the application 
developer from business factory objects: 



Method Description 



Return all business objects matching the search 
criteria. 

Update all business objects matching the 

~ i u — ~ 
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search criteria 

Remove all business objects matching the 

specified criteria 

Insert new business object(s) 



SESSION FRAMEWORK DESIGN 

5 Figure 18 illustrates a method 1800 for persisting information during a user session. 
First, in operation 1802, a session is initiated upon a user accessing a predetermined 
starting page. A current page accessed by the user is then tracked in operation 1804 
while browsing a plurality of pages during the session. In operation 1806, a record is 
maintained of a page previously accessed by the user during the session. 

10 Information is persisted in operation 1808. This information is selected from a 

group of items such as user identifier, a time of a most recent user action during the 
session, activity components accessed during the session, and business components 
accessed during the session. During the session, the current page, previous page 
record, and information are provided to at least one activity component in operation 

15 1810. Also in operation 1810, the activity component generates output based on 
input provided by the user via the plurality of pages. 

In one embodiment of the present invention, the activity components to which the 
current page, previous page record, and information are provided may be selectively 
20 determined. In addition, the activity component may be provided an indication as to 
whether the user is permitted to access each of the pages. In such a case, the activity 
component may also be provided the indication as to whether the user is permitted to 
access each of the pages based on the previous page record. 

25 In another embodiment of the present invention, the information may also include 

the user identifier. In such an embodiment, user preferences may be looked up based 
on the user identifier with the information including the user preferences. Also, in 
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order to identify the persisted information, references to activity components, 
business components, a user component, a tracking manager component, a system 
preference component, and an event handler component may be employed. The 
following material provides a more detailed description of the above-described 
5 method. 

This portion of the present description details the ReTA Session framework design 
from the perspective of the application developer. The primary role of this 
framework is to provide services to handle the stateless nature of Internet. By 

10 default, the Internet does not provide services for maintaining information between 
pages. Without these services, it would not be possible to implement most 
eCommerce functionality. For example, session level state is necessary to 
implement eCommerce functionality where a customer can select products on 
multiple product description pages and then submit a complete product order request 

1 5 from a confirm order page. The ReTA Session framework leverages the Internet 
Information Server / Active Server Page (IIS/ASP) session object, which is 
automatically created when a user who has no open US sessions requests a Web 
page. 

20 Session Framework 
Description 

Figure 18.1 illustrates a Session Flow Diagram - On Session Start. As shown, a 
25 Session framework 1830 operates in the MTS Runtime Environment 1832. Figure 
19 illustrates a Session Flow Diagram - On Start ASP Page. Again, the Session 
framework 1900 operates in the MTS Runtime Environment 1902. The ReTA 
Session framework provides services required throughout a user session. The user 
creates the Session framework at log on and removes the Session framework at log 
30 off. During the lifetime of the user session, application and architecture components 
require certain data to persist. This framework provides services to store and 
retrieve all information needed for a particular user session. This information may 
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persist throughout the user session. The Session framework also provides services 
to uniquely identify the user and enforce access rights. 

The user information that the Session framework persists, in memory, between 
5 Active Server Page requests includes: 

• User id 

o Identifies session user 

• Last page 

o Last page accessed by the session user. 
10 • Current page 

o Current page accessed by the session user. 

• Last connection time: 

o Session user's last connection time. 

• Current activity: 

15 o Activity currently being executed by the session user (refer to activity 

framework design) 

• Activity Components 

o All activity components accessed during user session 

• Business Components 

20 o All business components accessed during user session required by 

multiple activity components. 

Note: 

This framework uses the Active Server Page's Session Object. Thus, the framework 
25 only works with browsers that accept cookies. For other browsers (or if cookies are 
disabled), a new ASP Session Object may start for each web page. 

Services 

30 The Session Framework provides the following services: 
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oecuniy 


T T<;f*r iHpnti fiffltioti 

Page access authorization - Session scope 
Automatic abort — timeout 


Customized information 
aeavery 


Customized user interface 

r^n^tnmiypH airnliration access 


Manage user session 


Inform user on session status 


Flow control 


Page to open on action 

T^orrpc of* apfivitv 

JT ClCjt/O Ul <X\s LI V 1 1 jr 


Maintain context 


Activity Component context 

Business Component context - shared among activities 


Message Broadcast 


Register listener 

Broadcast Message to registered listeners 


Encryption 


Encode Database User Name and Password 
VsOie. rLncoaing impiemeniea vmy unce {as part uj 
system set up). 

Decode Database User Name and Password 

Note: Used by session framework during all database 

accesses. 


Components 

The Session Framework implements these services through the following COM 
objects: 


1 Component 


Service 


AFSession 


Manages current user session 


AFSystemPreferences 


Contains System Preferences from database table 
TAFSYSTEMPREFERENCES 


AFTrackingManager 


Contains security and flow control info from database 
tables T_AF_PAGESOF ACTIVITY, 
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T_AF_AUTHDESTDSfATIONPAGE 

T_AF_AUTHSOURCEPAGE 

T_AF_DESTINATIONFORACTION 


AFBrowserlnfo 


Contains current user's web browser information 



These components are described in detailed in the following sub-portions of the 
description. 



5 AFSession 



The AFSession component maintains the user's session state information. To 
maintain the state information, this component holds references to activity 
components (logical units of work - application flow logic), business components 
10 (business logic required across activity components), user component (user 

information), tracking manager component (web page access security and web page 
flow control information), system preference component (system preference 
information) and event handler component (event handler) created during the user's 
session. 

15 

From the application developer's perspective, the state maintenance work performed 
by the AFSession component is transparent. The application developer leverages the 
session services through populating the database tables with the client specific 
information. 

20 

Methods 



The IAFSession, IAFEventBroadcaster and IAFContext interfaces define the access 
to the AFSession component. These interfaces support the following methods: 



Method 


Description 


AFSession 




Start 


Start session - Called by ASP (global.asa 
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Method 


Description 




Session_On Start ). 


Stop 


Stop session - Called by ASP (global. asa 
Session_OnStop). 


StartPage 


This method is called by ASP script logic at the start of 
each page. It is used to broadcast a pageStart event to all 
the listeners (activity components) that have registered as 
interested in pageStart events. It also stores this page as 
the current page and moves the existing current page into 
ine lasi page ^lnioiiiiaiion neia oy ine session s 
"tracking" object). 


StopPage 


This method is called by ASP script logic at the end of 
each page. It is used to broadcast a pageEnd event to all 
ine listeners ^activity components ) mai nave regisiereci as 
interested in pageEnd events. 


A Knrt 


i nis meinoci is caiieu wnen me session is 10 oe auoneu. 
This method calls the abort method on all activity 
toiuponciiib KJiowii iu accjaion ^neiti oy me session s 
"activity context" object). 




ocio ine t/iirrciii /taaivc ocrvci r age ^iiciu oy uic oCoMwii s 

11 CT.V/JV1 1 1 \J KJ\ \->\*s 11. 


frp t f" 1 1 1 rrpTi tP n o p 


RprnrnQ tVip fiiTTpnt Aftivp Sprvpr T^hcxp ^VielH "in tVif* 

IVVIUI llo lilt/ l/Ullt/lll At LI V ^ OW Vtl r agW llltlU ill LI It/ 

session's "tracking" object). 


("retT astPaize 


Returns the 1a<?t Active Server Pape arreted in the 

lWlUIllu Lllv Idol x V\^- H V kJ^J. V w-l X iXtZ-\m/ UvvvOOvU Ulv 

session (held in the session's "tracking" object). 


SetSessionld 


Update the sessionld attribute. 


GetSessionld 


Returns the current session Id. 


S etCurrentAc ti vi ty 


Sets the current activity Page (held in the session's 
"tracking" object). 


GetCurrentActivity 


Returns the instance of the current activity (held in the 
session's "tracking" object). 
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Method 


Description 


. Ge.tAntivitv 


Returns the instance of the requested activity (held by the 
session's "activity context" object). 


IsActivitylnContext 


Ask session if it has a reference to the requested activity 
^ncio oy ine session s activity context ODjectj. u 
found, returns true, else returns false. 


AddActivity 


aqq ine requesieu acnviTy jreierences neia oy ine 
session's "activity context" object). Set the requested 
activiiy to the current activity (held in the session's 
iracKnig udjcci^. 


RemoveActivity 


Remove the current activity (held by the session's 

tttllV liy L'iJilLCAl IJUJCt/l^. 


GetNextPage 


Returns the next web page to access for the current 

u.L/UVlljr l^illl\JllllclllUIl UCltl \Jj 11 1C LlClt/lVlllg liiCtllCt^Cl 

t/ trill LJtS 11 t/l-lt I. 


Opt A FT Tder 


T?f*tiiTTiQ thf* "iiqpt*" pniTiT^nnf^rit (\t\Vc\yty\s\\\c\t\ ji^QOPiafpH 

IvVlUillO Lilts llOwl tstJlllLPtrllt/llL llllAVJllllClLlWll OooU^/lalL/U 

with the current logged in user). 


O wIjtVL v_J owl 


^f*tQ tVip iiQf*t* ff»r tTif* piin*pnt QfQQinti T^pihttiq an mtf*<7f*r 

OtfLo Lilt/ Uot/I Ivl Lilt/ t'Llllt'llL d&OOlUil. JLVt/LUl llo Oil lllLt/c£t/l 

indicating success or failure. 




T? irnQ tVif* "iT*ar*lrino man a erf*!"" rntntinnpiit 

XVt/LLLlllO Lilt/ 11 CltslVlllfi^ illCUl«.iit/l t/VJlllLJt/llt/lll. 


GetEventHandler 


Returns the "event handler" component. 


s 


xvCLunio ine sy»iein preicrciicc t/UinpuiicnL. 




AUU ct UllolllCoo l^llCltl Ujr Lilt/ oCoolUll o UUoiilCoo 

object context" object). 




XvvlLUllO Lilt/ llloLclllt/ 1/ Ul Lilt/ 1 vVJ UvO Lt/tl LSLlOlllt/OO UL/JV/wl 

(held by the session's "business object context" object). 


RemoveObject 


Remove the instance of the requested business object 
(held by the session's "business object context" object). 


ContainsKey 


Returns true if the "label" of the requested business 
object exists (held by the session's "business object 
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AvientHnoaaGastei 



context" object). 



Retums all business object "labels" (held by the session's 
'business object context" object). 



Add the requested listener (activity component) to list of 
interested listeners. If an activity is interested in a 
StartPage event (i.e., needs to capture user modified data 
from the previous web page), this method is called by 
ASP script logic at the start of the page. 
Remove the requested listener (activity component) from 
list of interested listeners. 

Invoke the receiveEvent method on all registered 
listeners (activity components). Refer to activity 
framework design for the automated user data capture 
functionality. 



AFSystemPreferences 

The AFSystemPreferences component contains system preferences (held during the 
session). This component uses the ReTA persistence framework to read the system 
preferences from the database ("system preferences" table). 

Methods 



The IAFSystemPreferences interface defines the access to the AFSystemPreferences 
component. This interface supports the following methods: 



Method 



Description 



ids and stores "system preference" data from "system 
preferences" table. 
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Method 




Description 



Returns the application's ASP root location (as defined in 
from "system preferences" table). 



AFT r ackin gMan ager 

The AFTrackingManager component provides page sequence security, dialogue flow 
5 and activity flow functionality for the session framework. 

Page sequence security 

The page sequence security is defined in the following tables: 



10 



15 



Table "Authorized Destination Page" 1834; 

Define for each page, the pages that are allowed to be accessed. If no 
authorized destination pages are defined, the page is authorized to access any 
page. 



Column name Description 



M 


Unique id 




Name of the current page 




Page which is authorized to be access 



Table "Authorized Source Page" 1836; 

Define for each page, the pages that are allowed to access it. If no authorized 
source pages are defined, the page is authorized to be accessed by any page. 



Column name j Description 



Unique id 



Name of the current page 



Page authorized to access the current page 



Dialogue flow 

20 The dialogue flow is defined in the following table: 
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Table "Destination For Action" 1838: 

Define the action flow between the web pages (i.e., which ASP is open when 
a specified push button is clicked during a specified activity). 



Column name 


Description 


m 


Unique id 




Name of the current page 




Name of the UI widget, which triggers the 
action. 




Name of the activity where the event is 
triggered 




Name of the page to open 



5 

Activity flow 

The activity flow is defined in the following table: 



Table "Page Of Activity" 1840; 
10 Define the automated activity switching when the user jumps from one web 

page to another. 



Column name 


Description 


M 


Unique id 




Name of the activity 




Name of the page belonging to the activity 



Methods 



15 The IAFTrackingManager interface 1904 defines the access to the 

AFTrackingManager component. This interface supports the following methods: 



Method 




Description 



Determines if the previous page is in the list of 
allowable sources for this page (as defined in 
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"Authorized Source Page" table). If access is 
allowed, returns true. Else, returns false. 


i^necKAUinorizeuiJcsimdiioiijr 
age 


Tj ex i*i ti "i t~\ (^c if thi O nQftP ie in f" lief" i~\ r 

JL'cieillllXieS 11 Llllb p<igC 15> 111 U1C llol OI 

allowable destinations for the previous page (as 
defined in "Authorized Destination Page" 

IdUlC^. -LI aLLCoo lo ollUWCU, ICHU-lllo 11 UC 

returns false. 


GetDestination 


Returns destination page for requested action, 
activity, and source page (as defined 

7~) /Jc/tM/i/j'/IM /TVl y A S^tl/^i F7 " f" Q V\ 1 

Ls&ollrlililUtt V Ut SlClMJrl IdUlC^. 


IsPartOfActivity 


Determines if this page is part of requested 
activity (as defined in "Page Of Activity" table). 
Tf* nac^e i<; nart of aetivitv returns true Else 

I I LTd-C^w lo UiU L \JX Civil VllVj 1 vlUlllO UUv> J-^luvj 

returns false. 


Start 


Reads and stores the Authorized Destination 
Page, Authorized Source Page, Destination For 
Action and Page Of Activity tables. 



AFBrowserlnfo 

The AFBrowserlnfo component contains the user's browser information. 
Methods 

The lAFBrowserlnfo and IAFEditable interfaces define the access to the 
AFBrowserlnfo component. These interfaces support the following methods: 



Method 


Description 


GetBrowserName 


Returns the name of the browser that the user is 
currently running. 


GetBrowserVersion 


Returns the version of the browser that the user is 
currently running. 
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Method 



Description 




Note: not implemented 



Note: not implemented 



Note: not implemented 



Sets the requested attribute's value. 



Returns the requested attribute's value. 



USER INTERFACE FRAMEWORK DESIGN 

Figure 20 illustrates a method 2000 for generating a graphical user interface. A form 
is initially created in operation 2002. The form includes a plurality of attribute rules 
dictating a manner in which user interface objects are situated thereon. In operation 
2004, a plurality of user interface objects are selected. A page is generated in 
operation 2006 with the selected user interface objects situated on the page in 
accordance with the attribute rules of the form. JavaScript actions are attached to the 
selected user interface objects in operation 2008. The JavaScript actions are capable 
of being executed upon detection of a user action involving one of the user interface 
objects. 

The user interface objects may include one or more of the following: a push button, a 
text box, a text area, a radio button, a check box, a drop down, a blank item, a user 
interface list, and a static table. The user action may include at least one of clicking 
on one of the user interface objects, changing text in one of the interface objects, 
exiting a text box of one of the interface objects. Further, the user action involving 
one of the user interface objects may cause a predetermined event. Optionally, the 
page may be an HTML page. The following material provides a more detailed 
description of the above-described method. 
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This portion of the present description details the ReTA User Interface (UI) 
framework design from the perspective of the application developer. The role of this 
framework is to provide services that generate the HTML code for UI widgets and 
attach Javascript actions to UI widgets. The UI framework exposes these services 
5 through a set of Component Object Model (COM) objects. The application 
developer uses these UI COM objects and their services through scripting logic 
added to the application's Active Server Pages (ASP). 

User Interface Framework 

10 

The User Interface framework provides components for generating HTML. An 
HTML page is generated from a combination of the various UI Components. Figure 
20.1 shows the steps for generating a HTML page consisting of a form 2030 with a 
TextBox 2032, a DropDown list 2034 and a PushButton 2036. 



15 



The User Interface Framework provides the following services: 





Push Button 



Text Box (single-line entry field) 
Text Area (multi-line entry field) 
Radio Button group 



Check Box 



Drop Down List Box 



Blank Item 



Static Table 



Single-Select List Box 



JavaScript - action shell 
JavaScript - data type validation 
JavaScript - data range validation 
JavaScript - automatic navigation action 
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Cascading Style Sheet 

Form (grid layout for form elements) 



The User Interface Framework implements these services through the following 
COM objects: 



lfaiftr*j5k!!S5 



Form containing the widgets 



Push button widget 



Single-line entry text box widget 



Multi-line entry text box widget 



Radio button widget 



Check box widget 



Combo box widget 



Blank item widget (used for spacing.) 
Single-Select List Box widget -IE4 Only 



Static Table widget 



Javascript function - Move to next page 
HTML - attach Javascript function to a form 
element 



Javascript tag and functions 



Cascading style sheet (CSS) 



5 These components are described in detail in the following sub-portions of the 
description. 



AFForm 



10 The AFForm component is used in conjunction with form element widgets to build 
complex user interfaces. Initially, the application creates an instance of the form 
component and sets its attributes. Following this activity, the application creates 
instances of the associated form element widgets and adds them to the form using 
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the form's add method. As another service, the form component provides methods 
to help align all associated form element widgets properly on the page. 

Methods 

5 

The IAFForm interface defines the access to the AFForm component. This interface 
supports the following methods, which the developer uses to create a form. 



Method 


Description 


Tnt 


/\iign inc 101111 leit 


Tnt riehtO 


Align the form right 


Int center() 


Align the form centrally 


Int caption(String) 


Sets the caption that may appear at the top of 
the form. 


lilt lIcllliC^OLllllti/ 


Qpf thp TTTA/TT nnmp of* tnp form ' 1 'hiQ onti on k 

Uvl lilts III ivl l t lldlJtitf \J X lllSJ 1VJ1111. X LHO vUUUll lo 

required by some of the items which can be 
added to the form and should always be set 


Tnt \/Q 1 1 Qfriri cy\ 
111 L V diUtl O lllllg 1 


Cf>t tfip T-TT'A/TT valup of thp form 

uvl mis 11 1 1 vi 1 . vaiuw ui niw ivl 111. 


Int border(int) 


Sets the width of the border around the form 


Tnt ^i*7p^ 


T?ptiirn<: thp mimhpr oF form plpmpnt widopt^i 

added to form. 


String sendLocation(int, 


Value of the Location object attached to the 


eventcollection) 


members of this form. 


Int form_width(int) 


Sets the width of the form in UI elements. For 
example if set to 2 a form 2 elements wide 
would be created. A third element added to the 
form would be placed on a new line. 


Int cell_width(int) 


Sets the HTML Cell padding value for the 
form. A larger number may increase the 
spacing between the form elements. 


Int lockTableWidth(int) 


Locks the width of the form to the input value 
in percentage valid ranges (0-100%). Use this 



-127- 




option to set the amount of screen width the 
form may occupy. 

Add a widget object to this form. Widgets are 
created separately. 

Generates the HTML code for the Form. The 
return value is the output HTML and should be 
printed to the screen. 



AFPushButton 



The AFPushbutton component can only be used in conjunction with a AFForm 
component (the form's generate method iterates through the generate method for all 
form element widgets to build the necessary HTML code). An action object can be 
attached to a AFPushButton component. (Refer to AFHardCodedASP Action and 
AFJScriptAction for details). 



10 Methods 



The LAFPushbutton and IAFUIActionltem interfaces define the access to the 
AFPushbutton component. These interfaces support the following methods, which 
the developer uses to create a push button form element. 



Method 




Description 



Align the button left 



Align the button right 



Align the button centrally 



Set the text that may appear on the button. The button may 
stretch its size to fit this text 



Set the name of the button. 



Set the button to be the default HTML reset button. When 
this method is called, clicking on the button causes the 
values of all HTML form elements in the form to which 
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this button belongs to be reset to their values when the 
page was initially loaded. 

Resets the above method. The button returns to being a 

normal Widget item. 

Adds an action to the button. 



AFTextBox 



The AFTextBox component can only be used in conjunction with a AFForm 
5 component (the form's generate method iterates through the generate method for all 
form element widgets to build the necessary HTML code). An action object can be 
attached to a AFTextBox component. (Refer to AFHardCodedASPAction and 
AFJScriptAction for details). 



10 Methods 



The IAFTextBox and IAFUIActionltem interfaces define the access to the 
AFTextBox component. These interfaces support the following methods, which the 
developer uses to create a Text Box form element. 



Method 


. Description 




■H Align the textbox to the left 




HH Align the textbox to the right 




HH Align the textbox to the center 




Set the caption to appear next to the text box. 



Set the HTML name of the text box 



Set the maximum length of text in the box 



Set the visible size of the text box 



Set the default text in the text box 



Adds data validation to the onBlur event of the text 
box. 

Data Type validation includes: 
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Method 


Description 




Numeric -DV TYPE ISNUMERIC, 




Alpha - DV_TYPE_IS APLHA, or 




Date - D V_T YPEISD ATE . 




None - DV_NONE 




Range validation* includes all 8 permutations - <less 




than> through <(less than equal) and (greater than 




equal)>. 




DV_RANGE_LESSTHAN, 




DV_RANGE_LESSTHANEQUAL, 




DV_RANGE_GREATERTHAN, 




DV_RANGE_GREATERTHANEQUAL, 




DV_RANGE_LESSTHAN_GREATERTHAN, 




DV_RANGE_LESSTHANEQUAL_GREATERTH 




AN, 




T\A / D A XTPE T TJCCTUAM r'D t? A Tt?D TTJ A \TC AT T 

L> V _KAJN Lrb_Lii b i> 1 ri AiN_oKii A 1 xiK 1 rlAJN h,\l U 




AL, 




DV_RANGE_LESSTHANEQUAL_GREATERTH 




ANEQUAL 




* Note: Range validation only occurs for "Numeric" 




data type. 


jui set l exiooxinaicaior^ini ) 


i nis meinoa sets a pnvaxe memoer vanaDie 10 an 




integer value, this value indicates if the textbox may 




be the only textbox on the form that is to be 




generated. 


Lit addAction(Action) 


Adds an action to the onChange event of the text 




box. 



AFTextArea 

The AFTextArea component can only be used in conjunction with a AFForm 
component (the form's generate method iterates through the generate method for all 
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form element widgets to build the necessary HTML code). An action object can be 
attached to a AFTextArea component. (Refer to AFHardCodedASPAction and 
AFJScriptAction for details). 



Methods 



The IAFTextArea and LAFUIActionltem interfaces define the access to the 
AFTextArea component. These interfaces support the following methods, which the 
developer uses to create a Text Area form element. 



Method 



Description 



Align the text area left 



Align the text area right 



Align the text area to the center 



Set the caption to appear next to the text area 



Set the HTML name of the textArea. 



The name of the HTML form on which the textarea is to 
be placed. This is a required method and the textarea 
may not function correctly without this value being set. 
Set the number of rows which the text Area may display 
to the user 

Set the number of columns, which the text Area may 
display, to the user. 

Adds data validation to the onBlur event of the text box. 

Data Type validation includes: 

Numeric - DV_TYPE_ISNUMERIC, 

Alpha - D V_TYPE_IS APLHA, or 

Date - DV TYPE ISDATE. 

None - DV NONE 

Range validation* includes all 8 permutations — <less 
than> through <(less than equal) and (greater than 
equal)>. 
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Method 


Description 




DV_RANGE_LESSTHAN, 




DV_RANGE_LESSTHANEQUAL, 




DVRANGEGREATERTHAN, 




DVRANGEGREATERTHANEQUAL, 




DV_RANGE_LESSTHAN_GREATERTHAN, 




txi j OA "KTi^H? T nCOTTJ A X T r? /~\ I TAT /"""TJ T? A ' 1 'L.'T>' 1 1 LT A XT 

D V _RAJMGE_LEbb 1 HAN U A_L_CjKh A I hK 1 HAN, 




DV_RANGE_LESSTHAN_GREATERTHANEQUAL, 




DV_RANGE_LESSTHANEQUAL_GREATERTHAN 




T7 (~\J TAT 




* Note: Range validation only occurs for "Numeric" 




data type. 


Int setFormName(String) 


Set the name of the form onto which the textArea object 
is being added. This method is mandatory for the 
correct functioning of the method. 


Int setMaximumSize(int) 


Set the maximum size of text, which can be entered into 
ine icxt area, w ncn ims vaiue is exceeueu, a pop up 
window may warn the user that they have exceeded the 
maximum size and that their entry may be truncated to 
the maximum value (which is set here). The default 
value is 500. 


Int addAction(action) 


Add an action to the textarea. 



AFRadioButton 

5 The AFRadioButton component can only be used in conjunction with a AFForm 
component (the form's generate method iterates through the generate method for all 
form element widgets to build the necessary HTML code). An action object can be 
attached to a AFRadioButton component. (Refer to AFHardCodedASPAction and 
AFJScript Action for details). 



10 
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Radio buttons are used in groups. Because of the complexity of the client side script 
required in conjunction with the radio button component, the application developer 
must call the generateRadioButtonScript Q method on the AFScriptgenerator object 
on the page wherever radio buttons are used. This method takes as inputs: 

• The name of the form object to which the radio button has been added. 

• The name of the radio button group within the form 

• The default value the radio button group may pass to the page view if nothing 
is selected by the user. 

• The return value from this method is the generated HTML and Javascript 
which is written to the client browser within the <HEAD> </HEAD> tag of 
the page. 

Methods 

The IAFRadioButton and IAFUIActionltem interfaces define the access to the 
AFRadioButton component. These interfaces support the following methods, which 
the developer uses to create a Radio Button form element. 



Method Description 



Align the radio button left 

Align the radio button right 

Align the radio button to the center 

Set the caption to appear next to the radio button 

Set the HTML name of the radio button 

Deselect the radio button. 

Select the radio button, (highlights button) 

Sets the name of the form onto which the radio button is 

being added. This is a mandatory method in order for the 

component to function correctly. 

Set the number within the group which this radio button is 
assigned 

Returns the group number of the Radio Button 




-133- 




Add an action to the radio button. 



AFCheckBox 

The AFCheckBox component can only be used in conjunction with a AFForm 
5 component (the form's generate method iterates through the generate method for all 
form element widgets to build the necessary HTML code). An action object can be 
attached to a AFCheckBox component. (Refer to AFHardCodedASPAction and 
AFJScriptAction for details). 

10 Methods 

The IAFCheckBox and IAFUIActionltem interfaces define the access to the 
AFCheckBox component. These interfaces support the following methods, which 
the developer uses to create a Check Box form element. 



Method Description 



Align the checkbox to the left 
Align the checkbox to the right 
Align the checkbox to the center 

Sets the HTML caption value of the object. The text may be 
displayed next to the checkbox object. 
Sets the HTML name of the checkbox 
Mark as checked the checkbox when generating it 
Mark as not checked the checkbox when generating it. 
Sets the HTML value of the checkbox 
Add an action to the checkbox. 
15 

AFDropDown 

The AFDropDown component can only be used in conjunction with a AFForm 
component (the form's generate method iterates through the generate method for all 
form element widgets to build the necessary HTML code). An action object can be 
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attached to a AFDropDown component. (Refer to AFHardCodedASPAction and 
AFJScriptAction for details). 



Methods 



The IAFDropDown and IAFUIActionltem interfaces define the access to the 
AFDropDown component. These interfaces support the following methods, which 
the developer uses to create a Combo Box form element. 



Method 



Description 



Align the Combo Box to the left 




Align the Combo Box to the right 



Align the Combo Box to the center 



Set the HTML caption of the object. 



Set the HTML attribute of the object. 



Add a row of data to the Combo Box. 



Set the name of the form onto which the Combo Box 
component has been added. 

Set the index of the data item on the Combo Box, which may 
be selected. 

Add an action to the Combo Box. 

Populate dropdown box with a Codes Table value 



10 AFBlankltem 



The AFBlankltem component can only be used in conjunction with a AFForm 
component (the form's generate method iterates through the generate method for all 
form element widgets to build the necessary HTML code). 



15 
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Methods 



The IAFBlankltem interface defines the access to the AFBlankltem component. 
This interface supports the following methods, which the developer uses to create a 
5 blank item form element. 




Set the widths of the blank item in percentage (%) 
Set the values of the blank item. The first String sets the 
text to appear in the first cell and the second String sets 
the text to appear in the second. 
Sets the color of the elements of the blank item. The 
two integer values represent the color of the first and 
second cells. Valid Values are 0 and 1 . The default 
color is white. Passing a value of 1 into either parameter 
causes the blank item cell to be displayed in the default 
highlighted color. 



AFUIList 



The AFUIList component creates a sophisticated DHTML based single-select list 
1 0 box form widget. The list box widget consists of a fixed headings row and a 

scrollable set of data rows. The list box widget supports data entry through data row 
level associated check boxes and text boxes. In addition, action objects can be 
attached to the list box and are generated in the same way as described for other 
form components. (Refer to AFHardCodedASPAction and AFJScriptAction for 
15 details). 
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The list box widget refreshes itself by passing (as parameters) the selected item and 
the state of all check boxes and all text boxes. The AFUIList view captures the 
values and updates the state of the list box to reflect the user choice. 



5 Note: 

The sophisticated functionality provided by this widget requires DHTML support. 
As of this portion of the present descriptions release date (Phase 2), only Internet 
Explorer 4.0 provides the necessary DHTML services. Therefore, this component is 
10 not cross-browser compatible. 



Methods 



The IAFUIList interface defines the access to the AFUIList component. This 
1 5 interface supports the following methods, which the developer uses to create a single 
select list box. 



Method 




Description 



Align the list box to the left 



Align the list box to the right 



Align the list box to the center 



Set indicated Selected List row as "checked" 
Set indicated Selected List row as "unchecked" 
Set indicated Selected List row as "highlighted" 
Return the currently selected list box row 
number. 

Return the object id of the currently selected list 
box row. 

Capture the Object id for a given list box row 
(used by the view mechanism). 
Retrieve the list box row number, which 
corresponds to an image reference. 
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Method 


Description 


Tnt cptf^ViPcVhcrv Stati i^O 

1_1 1 1. g V l Vrl 1 V V JV UV/AkJltllUOll 


Get Check Box status of reauested list box row 


Tnt <;etTexfRoxVa1uen 


Set text box value for reouested list box row 
with passed in String value. 


String eetTextBox Valued 


Get text box value for requested list box row. 


Tnt sefNameO 


Set list box name. 


Lit getName() 


Get list box name. 


Int getNumberOfRowsO 


Get the total number of list box rows. 


lU I dUUJL^alaivUW 1 UKeniZcU\J 


A rlrl *a mu/ tc\ tY\f> lict Kr»v 


Int addDataRowO 


Add a row to the list box. 


Lit setBorderWidth() 


Set border width. 


Int setValuesTokenized() 


oet tne aeiauit values 01 tne list dox. 

Doruer w lciiii, cciix^auuuig, i^iivk i rigger r id.g 

and Double Click Trigger Flag. 


mi set v aiuesjj 


oet tne cieiaun values 01 inc nsi uox. 
BorderWidth, cellPadding, Click Trigger Flag 
and Double Click Trigger Flag. 


Lit reset() 


v^iear an list dox aata rows. 


String generateO 


Generate the DHTML for the list box data rows 
(bottom frame). 


String 

generates ingleClickActionO 


Return the results of the single click action, 
which was attached to the list box. If no action is 
attached, return a blank string. 


String 

generateiJOUDiei^iicK/vcTion^j 


Return the results of the double click action, 
wmcn was aiiacneu 10 mc list dux. 11 no cll-uoii ij> 
attached rehim a blank string 


String generateScriptsO 


Generate the scripts required to handle the 
selected list. This method is executed on the 
parent frame that the list box is embedded. 


Lit addClickActionO 


Add a click action to the list box. 


Lit addDoubleClickActionQ 


Add a double click action to the list box. 
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AFThumbNailContainer 



The AFThumbNailContainer component generates a set of thumbnail images. The 
5 thumbnails are used as iconic pushbuttons. The application developer defines the 
single click and double click action destinations in the ASP page by coding the 
JavaScript functions referenced by the AFThumbNailContainer "generate" method. 



10 



Methods 

The IAFThumbNailContainer interface defines the access to the 
AFThumbNailContainer component. This interface supports the following methods, 
which the developer uses to create a Thumbnail container. 




15 AFStaticTable 



The static table component creates a standard HTML table with the parameters set 
by the developer through scripting logic added to application's ASP. 



20 Methods 
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The IAFStaticTable interface defines the access to the AFStaticTable component. 
This interface supports the following methods, which the developer uses to create a 
static HTML table. 



Method 


Description 


int addDataElement (String, 


Adds a data element to the static table. The integer 


int) 


value passed as the second parameter specifies the 




color to be applied to this cell of the table. 




0 indicates that it should be white, 




1 indicates the default highlighted color, 




2 indicates the default AF Blue color, 




3 indicates a gray color. 


hit SetRowLength(int) 


Set the number of data elements before an end of 




row is generated. 


Int GetRowLengthO 


Returns the number of data elements in the table. 


int setBorderWidth(int) 


Set the width of the border, which may appear 




around the table. Valid values are 0 through 10. 




Default is 0. 


Int getBorderWidthO 


Returns the current border setting for the static 




table. 


Int SetCellPadding (int) 


Sets the HTML cell padding value that may be 




applied to the form. This creates space around the 




data in the table. Valid values are 0 through 100. 




ueidun lb U. 


Int getCellPaddingO 


Get the current cell padding value for the static 




table. 


Int SetTableName(Stirng) 


Sets the HTML name attribute on the table object. 


String GetTableNameO 


Returns the HTML name attribute on the table 




object. 


String Generate 0 


Returns the generated HTML for the static table. 


SetFontOffSet (int) 


Sets the size of the font to be used on the static 




table. Valid values are -5 through +5. Default is 0. 
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AFHardCodedASPAction 



The AFHardCodedASP Action component adds a user defined automatic navigation 
action to a UI component. The UI components that support this service include 
5 AFPushButton, AFTextBox, AFTextArea, AFRadioButton, AFCheckBox, 

AFDropDown and AFSelectedList. Attaching the navigation action to a UI item 
may automatically direct the user to the next page. The next page is identified by the 
flow control service of the session framework. This means that the developer does 
not have to specify the page to open. This service also ensures that all changes made 
10 to the open pages are capture before opening a new one. The navigation action is 

triggered when the user causes a defined event on the object. Defined events include 
clicking on a link or button and changing the text or exiting a text box. The 
Javascript events are onClick and OnChange. 

15 The page that represents the target of the action must be entered into the database. 
The action logic may look to see which activity it belongs to and then look in the 
database to determine what page to show to the user. An example database entry in 
the T AF FWDestinationforaction table is: 



Action 




DestinationPage 













20 T AF FWDestinationforaction 



i(d CurrentPage 



25 




The id field must be a unique number, 

The current page is the page on which the action is being triggered. 
The Action is the name of the UI item which is triggering the action, 
The Activity is the activity in which the action is taking place. 
The Destination Page is the page to which the user should be redirected as 
the outcome of the action. 
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Methods 



The 1AP Action and IAFHardCodedASPAction interface defines the access to the 
AFHardCodedASP Action component. These interfaces support the following 
5 methods, which the developer uses to create a navigational action. 



Method 




Description 



The target of the action may be on the same frame 
as that from which the action is triggered. 
The target of the action may be on a new instance 
of the web browser. 

The target of the action may be on the parent frame 

of the frame, which triggered the action. 

Create HTML to call Javascript function ("String 

value") when the action is triggered. 

Used to track frame location during action. 



AFJScriptAction 



The AFJscript Action component adds a user defined action to a UI Component. The 
10 UI components that support this service include AFPushButton, AFTextBox, 

AFTextArea, AFRadioButton, AFCheckBox, AFDropDown and AFSelectedList. 

Attaching a Javascript action to a UI item may call a Javascript function when the 

action is triggered. Note: The application developer creates the called Javascript 

function on the correct application's ASP. The Javascript action is triggered when 
15 the user causes a defined event on the object. Defined events include clicking on a 

link or button and changing the text or exiting a text box. The Javascript events are 

onClick and onChange. 



Methods 



20 
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The IAF Action interface defines the access to the AFJscriptAction component. This 
interface supports the following methods, which the developer uses to create an 
action. 



Method Description 



Create HTML to call Javascript function ("String 
value") when the action is triggered. 
Create HTML to call Javascript function ("String 
value") when the action is triggered. 



5 

AFScriptGenerator 




The AFScriptGenerator component creates the Javascript functions needed by the 
actions. 

10 

Methods 



The IAFScriptGenerator interface defines the access to the AFScriptGenerator 
component. This interface supports the following methods, which the developer 
1 5 uses to generate the appropriate Javascript functions. 



Method 



Description 



Generate the Javascript function block. 
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The AFStyleSheet Component creates the Cascading Style Sheet text for the 
5 application. 



Methods 



The I AFStyleSheet interface defines the access to the AFStyleSheet component. 
10 This interface supports the following method, which the developer uses to generate 
the appropriate Cascading Style Sheet text. 



Method 



Description 



Generate the Cascading Style Sheet text? 



DEVELOPMENT ARCHITECTURE DESIGN 

15 

Figure 21 illustrates a method 2100 for software configuration management. First, 
in operation 2102, software configuration management units are identified. In 
operation 2104, software configuration management repositories and practices are 
established for storing work product related to the software configuration 

20 management units. A change control process is determined in operation 2106 for 
implementing change requests relating to the work product. Access to the work 
product is monitored in operation 2108 by a plurality of users and audits are 
performed to indicate whether the access to the work product by the users is 
authorized. Further, training requirements are calculated in operation 2110 by 

25 identifying a skill set required for the implementation of the change requests and 
determining a current skill set. 
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As an option, the software configuration management units may be identified based 
on configuration types, project baselines, and/or naming standards. The software 
configuration management units may also have characteristics including a name, a 
5 modification log, and a release affiliation. Further, the software configuration 
management practices may include backing up the repositories. 

The change control process may include identifying users authorized to implement 
the change requests, defining criteria for implementing the change requests, allowing 
10 evaluation of the change requests by the users based on the criteria, and monitoring 
the implementation of the change request. The present invention may also 
optionally include the creation of a training schedule to fulfill the training 
requirements. The following material provides a more detailed description of the 
above-described method. 

15 

The ReTA Development Architecture Design includes a set of sub-components that 
represent all design aspects of the development architecture. The Development 
Architecture Design Deliverable is used to validate design of the development 
architecture against the requirements. After it is validated, it may be used as a basis 
20 for build and test of the architecture. 

Development Architecture Component Design 

Purpose 

25 

The ReTA Development Architecture Component Design is based on the IDEA 
framework 2130. See Figure 21.1. IDEA provides a development environment 
framework and associated guidelines that reduce the effort and costs involved with 
designing, implementing, and maintaining an integrated development environment. 
30 IDEA takes a holistic approach to the development environment by addressing all 
three Business Integration components: organization, processes, and tools. In order 
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to accomplish this, several subcomponents 2132 are provided around a central 
system building 2134. 

The purpose of the development environment is to support the tasks involved in the 
5 analysis, design, construction, and maintenance of business systems, as well as the 
associated management processes. It is important to note that the environment 
should adequately support all the development tasks, not just the 
code/compile/test/debug cycle. 



10 Configuration Management 



15 



The purpose of Software Configuration Management (SCM) 2106 is to establish and 
maintain the integrity of the components of an application throughout the project's 
life cycle. 



This includes: 

• Comprehensively assessing and evaluating changes to a system after 
requirements have been agreed upon and commitments established. 

• Ensuring that approved changes are communicated, updated, verified and 
20 implemented properly. 

• Coordinate the project's day-to-day activities and avoid conflicting actions 
by controlling access to code and repositories. 

The project manager is responsible for the completion of the Project Configuration 
25 Management Plan during Design — with the help of the project team. This may: 

• Clarify roles/responsibilities for migrations so that they are understood early 
in the project lifecycle. See Figure 22, which illustrates the Configuration 
Management Life Cycle. First, a project study 2200 is created. Development 
and testing stages 2202,2204 follow the study. Finally, the implementation 

30 stage is reached 2206. 
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• Increase visibility of non-application components (e.g. database, architecture) 
in Configuration Management to improve quality of delivered products. 
Many times these are the components that are missed during 
implementations. 

5 

The ReTA SCM Policy portion of the description can assist engagement executives 
in creating a project configuration management plan. 

The following table provides a list of the active participants within the change 
10 control process. A person may have more than one role or responsibility depending 
on the size of the technical effort. Also note that the responsibilities are described 
here at a high level and are not intended to be all-inclusive. Most of the roles are 
would already exist on an engagement. However, there is one new role that is 
critical to the CM process, the Source Code Librarian. 

15 



Title 


Description & Responsibilities 


Technical Manager 


Typically an IS department head with responsibility for the purchase 
and/or support of hardware and software. In configuration 
management, this role is more software oriented. Other 
responsibilities include: 

Assign development and support staff to projects. 

Review (accept/reject) technical approach proposed for projects. 

Monitor development and support budgets and personnel - status of 

projects. 


Network System 
Administrator 


This individual is responsible for the installation, maintenance and 
support of the Unix and Windows NT servers including operating 
system, file systems, and applications. Other responsibilities include: 
Operating system installation, patch updates, migrations and 
compatibility with other applications. 
Installation and support of proper backup/restore systems. 
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Title Description & Responsibilities 



Installation and support of other peripherals required for installed (or 
to be installed) applications. 

Proper portion of the present description of hardware configuration 
and setup. 

Maintenance of Windows Domain users and Groups as well as other 
security issues. 



Database 
Administrator 


The DBA is responsible for proper creation and maintenance of 

production and system test databases. The integrity of the database, 

as well as recovery using backup/restore and logging, are priorities 

for the DBA. Other responsibilities include: 

Assist developers in maintaining development databases by 

automating backup/recovery, applying changes to database schema, 

etc. 

Provide support for tuning, sizing and locating database objects 

within allocated database space. 

Applying change requests to databases. 

laeany maintain enuiy reiauonsnip diagrams ior aaiaoases. 

Maintenance of database users and other database-related security 

issues 


Source Code 
Librarian 


Individual responsible for development and maintenance of source 
code control tools, training materials, and storage areas. The Source 
Code Librarian is also responsible for the integrity of the source code 
environment. Additionally: 

Establishes source code directories for new projects. 

Provides reports on source code environment status and usage per 

project. 

Provides assistance/information as needed regarding objects to check 
out for system test. 
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Title 


Description & Responsibilities 




Assists production operations in building/moving all applications into 
production. 


Business Analyst 


Individual or individuals responsible for managing the detailed 
design, programming, and unit testing of application software. Other 
responsibilities include: 
Developing/reviewing detailed designs. 

Developing/reviewing unit test plans, data, scripts, and output. 
Managing application developers. 


Application 
Developer 


Individual or individuals responsible for making changes to source 
code defined by management. This person typically: 
Checks source code out of the source code environment. 
Modifies code per user requirements or other development portion of 
the present description. 

Unit tests modifications in the development environment. 
Checks modified code back into source code environment in 
preparation for system test. 


System Tester 
Integration Tester 


This person or team is directly responsible for system testing or 
integration testing of an application prior to implementing in 
production. This may also take the form of performance testing. 
Typically, a system or integration test person or team may be 
responsible for: 

Following production operation procedures for installing a new 
application in the appropriate test environment. 
Develop and execute a test plan to properly exercise new application 
including new, modified, and unmodified functionality. 
Reporting results of test. 
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Title 


Description & Responsibilities 


Vendor 


For the numoses of this nortion of the nresent descrintion. a vendor is 

A A A * A ' 




denned as an organization from which software has been purchased 




for use by the clients systems. Alternatively, a vendor may distribute 




final installable media in the form of tape or CD with upgrades or 




new release of application. A vendor may: 




Make modifications to application code at vendor offices or within 




the engagement development environment. 




r^roviue necessary mioi mauon 10 oource \^oae i^iordrian to siore new 




code. 




Assist Source Code Librarian in transferring modifications to the 




engagement system test environment. 




Participate in system test (or performance test). 



Change Control 
5 Description 

Change requests as a consequence of changing requirements and changes requested 
due to nonconformity (or defects), either in the application software, or in the system 
software must be analyzed, authorized, scheduled, staffed, and tracked in a defined 
way. What, why, when, and who made a change must be tracked from the point of 
10 analysis to the reintroduction of the defective or changed component at the 

appropriate stage. Change control therefore governs what software component is 
changed, version controlled, and when it is re-migrated to a given development 
stage. 

1 5 Configuration Management becomes more complex in a component-based 
development environment as the system is broken down to a greater level of 
granularity. For this reason, change control processes need to be clearly defined and 
communicated across the entire engagement team. 
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Tool Recommendation 

ReTA Change Tracking Database 

The Change Tracking Database is a Microsoft Access tool. It provides basic 
5 functionality of entering, modifying and reporting of system change requests 
encountered throughout the entire project life cycle. 

Issues Tracking Database 

The Issues Tracking Database is a Microsoft Access tool that is ideal for small to 
10 medium sized projects. It provides basic functionality of entering, modifying and 
reporting of project issues encountered throughout the entire project life cycle. 

Procedures/Standards 

Figure 23 illustrates the change control 'pipeline' 2300 and each phase within the 
15 pipeline. The Change Control process can be divided into many different phases. 
They include: 

Log Change Request 

The first phase 2302 of the change control process is to log a change request. 
20 Regardless of who initiates a change request and how the change request enters into 
the engagement work-in-progress pipeline each change request should be logged 
Change Tracking tool. IT personnel who log change requests should record as much 
information as possible. 

25 Change Control Committee Review 

During the second phase 2304, the Change Control Committee (CCC) meets 
regularly to review the change requests that have been logged to the Change 
Tracking tool in the past week. The committee also discusses the status of the 
changes scheduled for migration during the weekly migration windows, reviews the 
30 changes already moved to production, and sets the Staging Date for change requests. 
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Before each weekly meeting, the Change Control Committee facilitator may 
generate the following reports: 

• Report of the change requests that have been logged to the Change Tracking 
tool in the past week 

5 • Implementation Report that list all changes scheduled to be implemented 

During the meeting the CCC may: 

• Review the new change requests 

• Discuss the cross-functional impacts 

10 • Verify that the target implementation date is realistic 

• Set the Staging Date 

• Update the status of the change requests scheduled to be implemented that 
week during one of the change windows 

• Evaluate the quality metrics of the changes that have been migrated to 
1 5 production and discuss any lessons learned 



Statement of Work / Scope Definition Portion of the present description 

During the third phase 2306, depending on the Change Category (Project, 
Enhancement, or Emergency), a Statement of Work or simple Scope Definition 
20 portion of the present description may or may not be required. These portions of the 
present descriptions both serve to define what the change request entails, and record 
what is agreed to by the change requester and IT. 

The Statement of Work, which is currently in use sometimes in FEP, is a detailed 
25 portion of the present description that describes the work that may be done for the 
change request. The Scope Definition portion of the present description is a simple 
portion of the present description of the scope of the change. It can be an email 
message, a faxed letter, or a brief Microsoft Word portion of the present description. 
The following table shows what is required: 



30 
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Change Category Statement of Work Scope Definition Portion of the 

present description 



Project 


Required 


Not Required 


Enhancement 


Not Required 


Required 


Emergency 


Not Required 


Not Required 



Once the developer starts working on the Statement of Work or Scope Definition 
portion of the present description, the developer should set the status of the change 
request in the Change Tracking tool to "Assigned". 

5 

The Statement of Work / Scope Definition portion of the present description is sent 
to the change requester for sign-off The sign-off needs to be checked-off on the 
Migration Checklist in the Change Tracking Tool in order to migrate the change to 
production. This sign-off serves as a quality checkpoint that the work on the change 
10 request may meet the business needs of the change requester. 

Analysis & Design 

This phase 2308 is required only for project change requests. For example, the 
developer may create technical analysis and design specifications portion of the 
15 present descriptions. Other impacted groups may create a technical impact 
statement. 

Code & Unit Test 

In this phase 2310, the developer codes the change request and unit tests the code 
20 changes to ensure that it works as designed and that it meets the business needs. 
The developer should set the status of the change request in the Change Tracking 
tool to "Development". 

After the change has been coded and unit tested, the developer should fill in the 
25 Resolution field for the change request within the Change Tracking Database. The 
developer should also fill in the approximate number of hours it took to complete the 
change request in the Actual Hours field. 
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System Test 

This phase 2312 is required for all project change requests and some enhancements. 
In this phase, the developer tests the change to ensure that the system's functionality 
5 works as designed. Furthermore, this test also ensures that the code change did not 
adversely affect other areas of the current system. This may entail running some pre- 
defined System Test scripts. For certain change requests, it is important to test the 
code change against a large volume of data. This may check if the change may 
handle all the data in the production environment. For any change requests which 
10 may impact interfaces both in and out of the target application, it is necessary to test 
that all the interfaces still work correctly. This may prevent a change request from 
adversely impacting other systems. 

The developer should set the status of the change request in the Change Tracking 
15 tool to "Testing". 

User Acceptance Test 

In this phase 2314, the most appropriate person, whether it is the requester or a user 
who may be directly affected by the change, may assume the role of the test 

20 administrator. The administrator tests the change request to ensure that it meets the 
original business need. In some cases, the developer may actually run the test plans 
that the test administrator creates, and the test administrator may validate the test 
results. Once the test administrator agrees that the change satisfies all the test 
criteria, the developer needs to check the user acceptance test sign-off box in the 

25 Change Tracking Tool. 

The sign-off is needed to migrate the change to production. This sign-off serves as a 
final quality checkpoint that the work on the change request meets the business 
needs of the change requester. 

30 

Fill out Migration Form 
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In this phase, the developer goes through a final process before submitting the 
change request to be moved to production. The developer should move all objects 
associated with the change request from the testing environment to the staging area. 

5 In order to move the change to production, the developer needs to complete the 
Migration Checklist form on the Change Tracking Tool and inform Production 
Control 2316 by the Staging Date. This form contains all the information about the 
objects that need to be moved from the staging area into the production environment. 
This form is a streamlined checklist of all the things that the developers must do in 
10 order for Production Services personnel to move the objects to production. 

Whenever a sign-off checkbox is checked or unchecked, the current user's ID and 
the current date may be captured by the Change Tracking tool. 

The following Migration Checklist items are required for the different change 
15 categories: 



Checklist Item 


Project 


Enhancement 


Emergency 


Statement of Work 


Required 


Not Required 


Not Required 


Scope Definition 


Not Required 


Required 


Not Required 


User Acceptance Test 


Required 


Required 


Not Required 


Tech / Code Review 


Required 


Required 


Not Required 


Complete Portion of the 


Required 


Required 


Not Required 


present description 








Complete Components 


Required 


Required 


Required 


Submit Production Move 


Required 


Required 


Required 


Distribution Lists 


Required 


Required 


Not Required 


Requirements 








(TCPIP, Special Forms, 








Microfiche, Electronic 








Files) 








Identify Impacted Systems 


Required 


Required 


Not Required 
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Checklist Item Project Enhancement Emergency 



Capacity Planning 


Required 


Required 


Not Required 


Ready to Migrate 


Required 


Required 


Required 



The Ready to Migrate checkbox is used to summarize that all the required sign-offs 
have been obtained and that the code is ready to be migrated to production. Finally, 
the developer should set the status of the change request in the Change Tracking tool 
5 to "Migrate". 

Move to Production 

Once Production Services personnel examines a completed Migration Checklist 
form, they may verify that all objects to be moved into production are in order, and 
10 that the change can be moved on the migration night in phase 2318. They may also 
ensure that all relevant items on the Migration Checklist have been completed. This 
check serves as the final quality checkpoint before the change goes into production. 

Production Services personnel may move all project and enhancement change 
1 5 requests to the Production environment during prescheduled outages or immediately 
in the case of an emergency fix. Production Services may then informing all system 
users what changes have been moved into production. 

Production Services personnel should set the status of each migrated change request 
20 in the Change Tracking tool to "Production". They should also set the Actual 
Implementation Date to the date the change was moved to production. 

Measure / Monitor Change in Production 

Business users and developers should continue to actively monitor the change 
25 requests after it is migrated to production during phase 2320. If no problems 

develop in production due to the change request, the Change Control Committee 
may confirm that the team leader of the change request should set the status of the 
change request in the Change Tracking tool to "Closed". If problems do develop in 
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production, the status should be set to "Re-Open". The developer is then re-assigned 
to fix the change request. 

If the change request in production caused other problems to jobs in production, and 
5 a new fix is needed, the change request is reopened once again. If the change request 
caused problems in other jobs that requires modification to the other jobs, then a 
new change request is created, and the source of the new request is tracked back to 
the old request. 

10 The Change Tracking tool contains metrics to track the quality of the change request. 
The Change Control Committee may assign the Migration Metric and Production 
Metric values for each change request approximately 35 days after it was migrated 
into production. If problems occur during the migration of the change request, the 
Change Control Committee may assign a "Fail" for the Migration Metric. The 

15 Problem Description should then be completed to explain why this problem 

occurred. The Lessons Learned should be filled with what lessons can be learned 
from the experience. If no problems occur, the Migration Metric may be assigned a 
"Pass". 

20 If problems occur in production due to the change request, the Change Control 
Committee may assign a "Fail" for the Production Metric. The Problem 
Description and Lessons Learned fields should also be filled with the relevant 
information. 

25 Below are the criteria for the Change Control Committee to use in deciding if a 
change request passed or failed the migration metric or the production metric. A 
change request may pass if it meets the following criteria. 

Migration Metric Criteria 

30 Flawless movement of all resources (Active Server Pages, MTS Components, Java 
Classes, Graphics, Data Model, etc.), from the staging environment to the production 
environment) is required. (I.e., resource movement must have no negative effects.) 
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During implementation activities there must be no unplanned, adverse effect on 
regularly scheduled batch or online processing, online availability feeds to other 
systems and reports. 

5 

Production Metric Criteria 

Production online processing and production batch processing must not experience 
any release-related abends. 

10 The production implementation may not cause problems, interruptions in service or 
failures in other areas within 35 days of the initial implementation date. Any release 
with is backed out due to quality or problems may fail this criterion. 

The change must be delivered when planned. A postponement due to external 
1 5 reasons may not cause the change to fail this criterion. Postponements due to quality 
or readiness of code must be communicated to the Change Control Committee, 
project team, and customers at least 3 days prior to the scheduled implementation 
date. 

20 

Migration Control 
Description 

Migration Control tools control multiple versions of source code, data, and other 
25 items as they are changed, tested, and moved from one development environment 
into another, for example, from development to test and from test to production. 
The list below provides a list of the various environments and their specific purpose 
within the project lifecycle. 



Environment Description 
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Environment Description 



Build / 

Component 

Test 


This 'virtual' environment is configured to reside nearly entirely on 
an individual developer workstation. Web and application services 
are running locally for presentation and business logic. 
Architecture components are accessed via a mapped network drive. 
A shared RDBMS Server or a local, more lightweight version of the 
database can be used for database services. 

Different workstation configurations may exist for component or 
user interface developers. Both types of developers use a source 
code repository for check in/out of code during development. 
In the event that the required modifications affect both a user 
interface and server-side components, then both developers may 
share components and interfaces using drive mappings. 
/\s coqc cnanges are macie a unit or v^ornponeni icsi is pcnormcQ 
to ensure that changes made in one area of the code do not have 
adverse affects on the rest of the component. 

When the build code is deemed fit for promotion, the source code is 
administrator is notified of the status. 


Staging Test 


This environment is used to verify and test packaged systems and 
components. This allows developers to verify the functionality and 
use of third party vendor applications during the Build/Unit Testing 
phase. 
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Environment 


Description 


Assembly Test 


This environment is a smaller testing environment used to ensure 
that end-to-end functionality of the system and to verify that 
changes made during any build efforts do not impact other areas of 
the system. A single developer lead (typically the Source Code 
Administrator) gets the latest version of the source code from the 
source code repository, performs a complete build, and executes a 
complete regression test of the system. 

When a point when the code is deemed stable and the system test 
environment is ready, the code residing on the integration server is 
checked back into the source code repository using a version label. 
Additionally, the binaries from the integration server are copied to 
the system test server for continued testing. 


System Test 


This environment, sometimes referred to as Product Test, is used 
for complete system technical and functional testing. Typically 
there are assigned project team members tasked with writing and 
executing system test scripts, logging errors as they are encountered 
and ensuring that the delivered application satisfies the functional 
requirements set by the client. 

From this point, system application and architecture binaries are 
promoted to the production environment. 


Performance 


This environment is used for conducting performance evaluations 


Test 


of the application and supporting architecture components. This 

CIl V lrUillllCIlL MlOUltl DC IsLrllllgUlCU UJ oilllUldlC LUC pi UUUl/UUU 

system as closely as possible. Additionally, data and transactional 
volume should be configured to simulate the system under worst- 
case scenarios. 

Performance testing tools should be utilized to simulate multiple 
users as well as monitor and report performance results. 
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Environment 


Description 


Production 


This environment consists of key hardware and software 




components to support the business operational systems. Typically, 




only applications and components that have been thoroughly tested 




for functional and technical accuracy are moved into this 




environment. 



With a ReT A/Microsoft-centric environment, a few key issues arise with respect to 
environment migration. These issues relate to the fact that the application is based 
on the use of Active Server Pages, Microsoft Transaction Server components and 
5 Java Classes. 

Sequence of Events 

To perform the code migration, certain steps should be followed to ensure that users 
that are currently in the application are not adversely affected. This can be 
10 accomplished by performing the migration in the following order: 

Using the Internet Information Server administration utility, monitor the site's 
number of active users. A count of zero indicates that no clients are currently hitting 
the site. Shut down the web listener to prevent additional users from connecting to 
the site. 

15 

Within the MTS Administration tool, shut down all server processes. This cleans up 
an components that may still be awaiting garbage collection from the Java Virtual 
Machine. 

20 If the component interfaces have not been modified, it is possible to copy the new 
version of the Java Classes directly to the new environment. If the interfaces have 
been changed, the MTS administrator may need to delete and recreate the individual 
components within MTS. 



25 



Copy any new web server files (ASP, HTML, graphics, etc..) to the target directories 
on the web server. 
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Restart the web listener to allow users access to the application. 
Module Location 

5 There are basically three types of modules that get migrated during a ReTA 
engagement. Web Server files, Application files and database objects. 

Web Server modules include Active Server Pages (ASP), static HTML portion of the 
present descriptions, graphics or images and JavaScript files. The ASP and HTML 
10 portion of the present descriptions may have security restrictions placed on them 

from within Microsoft Internet Information Server (IIS) and from the Windows NT 
Server. Security can be set to include individual user accounts, groups/roles, or no 
security. 

1 5 Application Server - Two file types are migrated within application servers, COM 
Dynamic Link Library's and Java Classes. Both files are created during the 
application and architecture build processes. The COM DLL's require registration 
within MTS by inserting them into a MTS Package. In the event that the Web and 
Application servers are two physically different machines, an export process is 

20 required between them to instruct the Web server where the business components 
physically reside. For more information on the registration and exporting processes 
refer to the MTS online help. 

In the case of the Java Classes, they need to reside in a directory that is defined 
25 within the server's 'CLASSPATH' environment variable. For ReTA Phase 1 & 2 

development and testing all runtime files were located with C:\ReTA. Therefore the 
following classpath environment variable was defined on each developer's 
workstation: 

CLASSPATH=C:\WinNTUava\Classes;C:\WinNT\Java\T™stLib;C:\ReTA\Archi^ 
30 ture;C:\ReTA\Application 
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Database Server - These items include tables, views, sequences, triggers, stored 
procedures and functions, and user/schema information. These items are not 
necessarily particular to multi-tiered development. However, care should be taken to 
ensure that architecture tables and other objects are located separately from the 
5 application objects. 

Security 

Within the ReTA application model, security is enforced at the Web and Application 
Servers. In the case of Web server security, access to ASP and HTML files can be 
10 restricted using the Access Control List security provided by Windows NT. Security 
on these objects can be set at the group (role) or individual user levels. 

A component within MTS utilizes role-based security to determine who may or may 
not have access to a specific COM component. A role is a symbolic name that 
15 defines a group of users for a package of components. Roles extend Windows NT 
security to allow a developer to build secured components in a distributed 
application. 

For example, Figure 24 depicts the application of Roles 2400 within the Microsoft 
20 Transaction Server Management console 2402. The package labeled 'ReTA 

Applications' 2404 has a single role defined as being able to access it, 'ReTA User' 
2406. Users that are members of the local 'ReTA Administrators' and 'ReTA User' 
Windows NT groups 2408,2410 are allowed to function in the ReTA User capacity 
defined for this package. 

25 

Due to the security options available at both the Web and Application server levels, 
care should be taken during code migration to ensure that security settings are 
consistent and applied correctly to ensure accurate execution. 

30 MTS Transactions 

Within MTS, every component has a transaction attribute that can be set by the MTS 
administrator to indicate what level of participation a component has within a 
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transaction. Care must be taken during MTS component migrations to ensure that 

the correct transactional attributes are set within MTS. 

The transaction attribute can have one of the following values: 

• Requires a transaction. This value indicates that the component's objects 

5 must execute within the scope of a transaction. When a new object is created, 

its object context inherits the transaction from the context of the client. If the 
client does not have a transaction, MTS automatically creates a new 
transaction for the object. 

• Requires a new transaction. This value indicates that the component's 
10 objects must execute within their own transactions. When a new object is 

created, MTS automatically creates a new transaction for the object, 
O regardless of whether its client has a transaction. 

ui • Supports transactions. This value indicates that the component's objects 

^ can execute within the scope of their client's transactions. When a new object 

O 15 is created, its object context inherits the transaction from the context of the 

yL client. If the client does not have a transaction, the new context is also 

created without one. 

'-4 • Does not support transactions. This value indicates that the component's 

q objects do not run within the scope of transactions. When a new object is 

^ 20 created, its object context is created without a transaction, regardless of 

whether the client has a transaction. 

Tool Recommendation 

Many configuration management tools are available on the market today, some of 
25 which provide many features useful for code promotion and management. 

During the ReTA Phase 1 engagement, Microsoft Visual SourceSafe was utilized for 
it's labeling and source code management capabilities. Additionally, the ReTA 
Change Tracker database could be utilized for source code migrations that required 
30 change management knowledge and approval. In the event that client requires the 



-164- 



use of paper or email based migration control, the ReTA Migration Request template 
can be used. 

Procedures/Standards 
5 Processes 

The processes that guide development within ReTA engagement environments are 
represented in Figure 25, which illustrates an environment migration process 2500. 
These processes include creating a new application 2502, modifying an existing 
application, and applying emergency bug fixes 2504. The solid lines represent 
10 stages required for new/modified application process. Dashed lines show the path 

for emergency bug fixes. Note: The term application used here is broadly applied to 
any managed module or component. 

Processes are defined by stages shown as individual boxes. Through these stages, 
1 5 applications are eventually (or quickly in the case of emergency bug fixes) promoted 
to production. Stages provide for initiating, managing, securing and coordinating 
changes to applications. 

The stages for the projects were developed in conjunction with representatives from 
20 each development team. It is important to note that the development stages 

represent the lifecycle of an application, not data. Within each development stage, 
there can be multiple data sets. For example, within the system test stage, an 
application team might wish to run several test cycles in parallel. In order to do that 
and keep the data consistent, a database for each cycle is required. 

25 

The CM process may ensure application modules are promoted through the 
development stages in a consistent manner. It is up to each application team to 
decide how to use each stage. For example, the application testing team may want 
four databases within the system test stage for different types of tests, whereas the 
30 assembly testing team may only want two. 
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* - Stage is used to consolidate and verify vendor changes. Depending on the 
change, it may be migrated to Development or System Test 2506,2508 directly. The 
order may be dictated by project requirements. 

5 A very important tenet of the CM process is that an application modification can 
only be in one stage at any point in time. Consider the example of module 1 . 
Module 1 starts out in development. When the development team indicates, the 
Source Code Librarian moves module 1 into system test. As soon as that happens, no 
changes can be made to module 1 . Only after module 1 is promoted to production 
10 2510 can modifications be made to the module (further enhancements, bug fixes, 
etc.). The purpose for this rule is to prevent the situation where one developer is 
modifying a module when that module needs to have a bug fix to continue testing. 
There is one exception to this rule, emergency fixes. 

15 When the situation dictates an emergency fix, the module affected needs to be 

modified immediately. When this happens, the module in question should be fixed 
within the development stage. When the fix is made, the module may immediately 
be put back into production. However, the same change also needs to be 
applied/promoted to the module in system test stage. This may allow modules in 

20 system test to always be current with what is in production. 

The CM process depends on change control records (CCR) for tracking changes to 
the system. A change control record is created for every new module or 
modification. The CCR is used to coordinate migrations and communicate status for 
25 each module in the system. One may see the use of the CCR throughout every 

process description. The CCR processing system may be automated through Notes. 

Major tasks and responsibilities define each stage of a process and are covered in the 
pages that follow. These tasks and responsibilities are not intended to be a 
30 development methodology. Any references to deliverables and/or portion of the 
present descriptions is informational only and provided to help anchor an already 
existing development methodology. However, specific deliverables and portion of 
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the present descriptions required for the change management process are required 
and may be highlighted. 

Development/Unit Test 
5 Development team checks required application source code out of source code 

control. See Figure 26, which illustrates a Development/Unit test 2600 for existing 
applications. Note: In the event that this is a new application, the developer may 
use the appropriate template from source code control. 

10 As needed, DBA 2602 checks required database source code out of source code 

control. Also as needed, DBA works with development team to approve and prepare 
modifications to development database. All work occurs on developer's workstation 
using local web and application server processes. Note: A shared web/application 
may be used for vendor staging. 

15 

Unit testing is ongoing during development. The development team checks 
modified application source code into source code control. The development team 
also fills in a change control record indicating which modules have changed. As 
needed, the DBA checks modified database source code into source code control. A 
20 source Code Librarian 2604 verifies/prepares necessary objects for building new 
applications. Unit test and development is completed. In some cases, a string test 
may be required. The system test team is notified, such as by e-mail. 

Deliverables from this stage might include: 
25 • Modified or new application 

• Modified or new database objects 

• Unit test data and output 



30 



CM Deliverables from this stage include: 

• A change control record with developer information filled in. 
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Assembly Test 

With reference to Figure 27, an assembly test team 2700 reviews user requirements 
and prepares validation or test plan. Database modifications are fetched from source 
code control and applied to an assembly test environment 2702. The Source Code 
5 Librarian fetches new application, builds it and copies it into assembly test 

environment 2704. Validation or test plan is executed pass/fail/deviation. The 
assembly test team signs change control portion of the present description. 
Deliverables from this stage might include: 

• Completed validation or test plan with pass/fail/deviation information. 

10 

CM Deliverables from this stage include: 

• A change control record with assembly test information. 

System Test 

15 System test team reviews user requirements and prepares validation or test plan. See 
Figure 28, which illustrates a system test 2800 for existing systems. Database 
modifications are fetched from source code control 2802 and applied to the system 
test environment 2804. The Source Code Librarian fetches the new application, 
builds it and copies it into the system test environment. A validation or test plan is 

20 executed pass/fail/deviation. The system test team 2806 signs the change control 
portion of the present description. 

Deliverables from this stage might include: 

• Completed validation or test plan with pass/fail/deviation information. 

25 

CM Deliverables from this stage include: 

• A change control record with system test information. 

Production 

30 Figure 29 is a flowchart for production of existing applications. The change control 
record is forwarded to the production operations team 2900 responsible for 
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scheduling changes to production. A promotion to production is scheduled on the 
production plan 2902. Database modifications are fetched from source code control 
2904 and applied to the production environment 2906. 

5 The Source Code Librarian fetches the new application, builds it and copies it into 
the production environment. The controlled change-tracking portion of the present 
description is signed and filed. Electronic copies of all portion of the present 
descriptions and portion of the present description can optionally be stored in source 
code control or other portion of the present description storage system. 

10 

Deliverables from this stage might include: 
~g • Application promoted to production. 

=p CM Deliverables from this stage include: 

y^l 5 • A complete change control record with production information. 

1 .1 Version Control 
jj£0 Description 

Version Control tools control access to source code as it is developed and tested and 
allow multiple versions to be created, maintained, or retrieved. For maintenance 
management purposes, it is desirable to designate one individual team member to 
function as the source control administrator. Duties for the source control manager 
25 would include the administration of source control users and projects, scheduling 

and performing periodic backups and applying labels to specific versions of the code 
(for migration purposes). 

Examples of architecture and application source code maintained within the version 
30 control process include: 
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Location Types 



Web Server 


Static HTML, Images, JavaScnpt 
Active Server Pages (ASP) 

Architecture ASP Header Files 


Application 


Activities 


Server 


Sub-Activities 




Business Components (factories, supporting Business Objects) 




ArfViitppfiirp Frampwnrlf<i 


Database Server 


Database specifics (table, rollback segment and temporary space 

information) 

Users, Roles 

Tables, Indexes, Triggers 

Procedures, Packages, Sequences 



Tool Recommendation 

Many configuration management tools are available on the market today, some of 
which provide test data management functionality. 

5 

During the ReTA Phase 1 engagement, two different tools where utilized and 
evaluated: Microsoft's Visual SourceSafe™ and Intersolve's PVCS Version 
Manager™. Both applications are relatively simple use and administer. Visual 
SourceSafe is preferred for small to medium sized engagements and PVCS Version 
10 Manager is preferred for large, enterprise-scale development efforts. For a complete 
description of the configuration and usage of the Microsoft Visual SourceSafe 
application as it was utilized on the ReTA Phase 1 engagement, refer to Source 
Control . 

15 Visual SourceSafe 

Visual SourceSafe from Microsoft ships with the Visual Studio suite and as such is 
tightly integrated with the Visual Integrated Development Environments. See Figure 
30, which illustrates a frame 3000 of Visual Source Safe. Check in and check out 
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functions 3002,3004 can be performed from with Visual Basic or Visual J++. 
Additionally, Rational Rose is also tightly integrated with SourceSafe. 

Additionally, this product provides: 

5 • Easy to use drag-and-drop for file check in and check out 

• Historical reporting and impact analysis 

• User and project level security 

• Archive and restore functionality 

• Version 'Labeling' for source code migration 
10 • Support for web based applications 



yi PVCS Version Manager 

q PVCS Version Manager from INTERSOLV is the industry standard for organizing, 
^15 managing and protecting your enterprise software assets. Version Manager enables 
= teams of any size, in any location, to coordinate concurrent development, with secure 

access and a complete audit trail. See Figure 31, which illustrates a frame 3100 of 
W PVCS Version Manager I-Net Client. 

^20 PVCS VM Server extends the power of Version Manager to teams enterprise-wide 
via the Internet and Intranets. An intuitive Web client lets users connect to a secure 
archive and work interactively, anywhere in the world, while sharing protected, 
centrally managed software. 

25 Additional features include: 

• I-NET client is simple and easy to use. It supports developers in many 
locations, working on many platforms 

• Organizes and references all project components graphically with a flexible, 
project-oriented approach 

30 • Use easy drag-and-drop to check files in and out of the system with the check 

in and check out buttons 3102,3104 
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Graphically view project history and see file differences in side-by-side 
comparisons 

Branch and merge as needed, with automatic alerts of any conflicts 
Automate development processes with event triggers 
Set up projects quickly with online assistants for project configuration, 
security and customization 



Procedures/Standards 



10 Build & Integration 

Figure 32 is an illustration of a Build Source Control Model. During the Build phase 
of a ReTA engagement, the workstation 3200 of each individual developer should be 
configured to function independently of other workstations and servers 3202 (except 
for the development database 3204). This process may require developers to first get 
15 an updated version of the application source files in addition to those files be 
checked out for modifications. 



The benefits of this configuration are: 

• Individual development changes do not effect other developers 
20 • Easier debugging and testing 

• Different project team members may check out different versions and/or 
components of the application concurrently. Changes can then be merged 
later. 



25 Assembly Test 

Figure 33 illustrates an Assembly Test phase control model. During the Assembly 
Test phase of a ReTA engagement, the Source Control Administrator may be 
responsible for the mass checkout and build of the entire application or architecture. 
Test workstations 3300 may access a web the app server 3302, which is connected to 
30 the source code repository 3304 and the database server 3306. 
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To aid in this process, the use of 'Labels' within the source code repository is 
employed to identify specific versions of files and projects. (See Figure 34. which 
illustrates Microsoft Visual SourceSafe 'Labels 1 3400). Labels allow for marking a 
specific set of files within the repository with a logical name and version. At a later 
5 point, it is possible to display the different labels and retrieve the desired version. 

Environment Management 

10 This portion of the description identifies the miscellaneous application and system- 
level services that do not deal with the human-computer interface, communication 
with other programs, or access to information. Environment Management Services 
identify each component used to perform the operating system services, system level 
services, application services, and run-time services. 

15 

Systems Management 

In order to maintain an effective and secure infrastructure, System Management 
procedures are essential in the success of obtaining a stable environment. These 
systems require tools, utilities and processes that allow administrators to monitor 
20 running components and change their configuration. Systems Management involves 
all functions required for the day to day operation of the ReTA environment (e.g. 
event monitoring, failure control, monitoring, tape loading, etc.). Regardless of the 
changes taking place within the Net-Centric environment, Systems Management 
activities must take place in an on-going manner. 

25 

System Startup & Shutdown 

A comprehensive development environment rapidly becomes sufficiently complex 
that the startup and shutdown of the environment must be managed carefully, and 
preferably automated. This is key to ensuring the integrity of the environment. 
30 Startup may involve the carefully sequenced initialization of networking software, 

databases, web servers and more. Similarly, shutdown involves saving configuration 
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changes as needed and gracefully taking down running software in the correct 
sequence. 

An Uninterrupted Power Supply (UPS) provides a server with power when the AC 
5 power fails or is marginal. The UPS may also shut the server down, in an orderly 
fashion, in the event of a power failure. The UPS may not shut down the server if 
the power failure is brief. 

The Smart UPS 1400 should be configured with an interface to the server. The 
10 recommended interface is the serial port B (COM2) on most servers. PowerChute 
Plus 5.0 software from American Power Conversion is the recommended choice. 

The basic purpose of PowerChute Plus is to safely shut down an operating system 
and server in the event of a power failure. To do this properly, PowerChute Plus 
15 needs the UPS to provide battery power to the system while PowerChute shuts down 
the system. This is where the correct sequencing of Events becomes important. 
Clear and accessible portion of the present description of startup / shutdown 
procedures 

Automated startup / shutdown process that rarely requires manual intervention 
20 A product that has remote power on reset capabilities 

Backup and Restore 

The incremental value of the daily work performed on the development project is 
high. This investment must be protected from problems arising from hardware and 
25 software failure, and from erroneous user actions and catastrophes such as fires or 
floods. The repositories and other development information must therefore be 
backed up regularly. Backup and restore procedures and tools must be tested to 
ensure that system components can be recovered as anticipated. The large volumes 
of complex data generally require automation of backups and restores. 

30 



The advent of Netcentric technologies has introduced an increase in media content 
that requires storage. The environment may support a high volume of media files, 
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which must be considered in the backup/restore plans. Storage capacity planning 
should allow for the typically increased size of these file types. 



As the amount of storage may grow significantly over time on a large project, the 
5 hardware requirements may increase. Sufficient room for growth should be planned 
when selecting the tools and hardware. Switching tools and hardware can be 
problematic due to lack of upward compatibility (DDS - DLT, various tools etc.). 

The time required for backups must also be considered. Usually the number of hours 
10 without development per day decreases over time and if backups can only be 
O performed when no user is logged in, this might become a problem. It is generally 
(f % the case that the project may benefit from buying the fastest and largest backup 
EH hardware/software it can afford. 

S 15 

= _ Storage Management 

Q ReTA may implement an automated tape management system that provides location 

JJJ / retention special handling, file integrity and data protection. 

^0 Archiving 

Archiving can be particularly useful to safeguard information from previous versions 
or releases. More generally, it is used to create a copy of information that is less 
time-critical than the current environment at a given time. Archiving may be 
performed to a medium, which is different from the backup medium, and may 
25 involve other tools, which, for example, provide a higher compression ratio. 

Performance Monitoring 

Performance Management ensures that the required resources are available at all 
times throughout the distributed system to meet the agreed upon SLAs. This 
30 includes monitoring and management of end-to-end performance based on 

utilization, capacity, and overall performance statistics. If necessary, Performance 




-175- 

Management can adjust the production environment to either enhance performance 
or rectify degraded performance. 

Operating System 

5 

Windows NT may function as the ReTA Phase 1 Development Environment 
operating system, handling Environment System Services such as multi-tasking, 
paging, memory allocation, etc. 

10 System Level Services 

The Windows NT Domain Controller allows users and applications to perform 
system-level environment services such as a login/ logoff process for authentication 
to the operating system; enforced access control to system resources and 
15 executables; and access to the local or remote system's user or application profiles. 

Application Services 

The ReTA Phase 1 Frameworks may perform application Security Services, Error 
20 Handling/Logging Services, State Management Services and Help Services within 
the application. 

State Management 

25 State Management Services enable information to be passed or shared among 

windows and/or Web pages and/or across programs. In Netcentric environments, the 
HTTP protocol creates a potential need for implementing some form of Context 
Management Services (storing state information on the server). The HTTP protocol 
is a stateless protocol. Every connection is negotiated from scratch, not just at the 

30 page level but for every element on the page. The server does not maintain a session 
connection with the client nor save any information between client exchanges (i.e., 
web page submits or requests). Each HTTP exchange is a completely independent 
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event. Therefore, information entered into one HTML form must be saved by the 
associated server application somewhere where it can be accessed by subsequent 
programs in a conversation 

5 Security Services 

ReTA implements Application Security through the ReTA Session and Activity 
frameworks. The Session framework provides "Session level Page access 
authorization", "User identification" and "session timeout" services. The Activity 
10 framework provides "Activity level Page access authorization". 

O 

§ 7j Error Handling/Logging Services 

IP Error Handling Services support the handling of fatal and non-fatal hardware and 
p software errors for an application. An error handling architecture takes care of 
ff5 presenting the user with an understandable explanation of what has happened and 
3 coordinating with other services to ensure that transactions and data are restored to a 
Ci consistent state. 

y3 Logging Services support the logging of informational, error, and warning messages. 
^0 Logging Services record application and user activities in enough detail to satisfy 

any audit trail requirements or to assist the systems support team in recreating the 

sequence of events that led to an error. 

Runtime Services 

25 

The ReTA Phase 1 Development Environment may use the Microsoft Transaction 
Server and the Microsoft Java Virtual Machine as a Run-Time Environment System 
Service. This affords a layer of abstraction between the applications and the 
underlying operating system. 

30 

Problem Management 
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Problem Management tools help track each system investigation request - from 
detection and portion of the present description to resolution (for example, Problem 
Tracking, Impact Analysis, Statistical Analysis). Several problem management 
software packages are available from a variety of vendors. 

5 

Tool Recommendation 
SIR Workbench 

The SIR Workbench is another Microsoft Access tool that was developed for small 
to medium sized projects. It provides basic functionality of entering, modifying and 
10 reporting of architecture and application problems encountered during the testing 

O and release phases of the project life cycle. 

2 Visual SourceSafe 

Visual SourceSafe (VSS) from Microsoft ships with the Visual Studio suite and as 

Q such is tightly integrated with the Visual Integrated Development Environments. 

Jj5 One of the features provided by VSS is the ability to search through the source code 

s for given text strings. This is useful for performing impact analysis. 

J2? Security Management 

^20 Security Management tools provide the components that make up the security layer 
of the final system, and may provide required security controls to the development 
environment. While some of these tools may be considered as nothing more than 
security-specific Packaged Components, many are an integral part of the 
development environment toolset. 

25 

Database 

Development Database security may be minimal. Database User IDs may be setup 
to grant user-level security. The engagement Database Administrator (DBA) may 
have a logon to allow for full permissions. Otherwise, a Developer ID may allow 
30 read/write access and a Core User ED may allow for read access only. 

Network 
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A Windows NT Group created specifically for the engagement may protect the 
Development shared file folder and subsequent sub-folders (ex 'ReTAArch'). 
Project members individual network accounts may be added to the Domain Group 
ensuring access. Local network administrators may be responsible for the creation 
5 and maintenance of individual and group account information. 

Application Server 

The application server has two forms of security: Static security and dynamic 

(context dependent) security. 
10 A Windows NT group may be created for each Role in the completed application 
__ (e.g. Customer, Manager). Microsoft Transaction Server's integrated Windows NT 
S security allows the developer to determine the security rights for each component, 
m The dynamic, context dependent security is implemented by the developer using the 
3j Event Handler framework for the logging and display of errors to the user. 
#5 

s Web Server 

^ The web server has static security for each page and security to maintain control of 
Ly the flow between pages. The static security uses the Windows NT group for each 
*f? user role to restrict access to each page. For the flow control, the developer uses the 
^fiO Session framework to restrict the ordering of page requests. The allowed ordering of 
pages are entered into the Session database tables. 



Systems Building 

25 

System Building tools comprise the core of the development architecture and are 
used to design, build, and test the system. 

Analysis & Design 

30 The BI Methodology has several application development routes that apply to 
different development scenarios. Routes currently exist in the methodology for 
custom and packaged application development. Component development is among 
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several routes to be developed. Until the component development route is 
completed, component-based projects should be planned using a combination of BI 
Methodology and ODM task packages. 

In general, BI Methodology should be used for all tasks that are independent of a 
5 specific technology. For example, tasks related to business modeling, user interface 
design, training development, package selection, and product testing should all be 
taken from BI Methodology rather than ODM. These technology-independent tasks 
typically occur early (business modeling, solution strategy, and requirements 
gathering) and late (product testing through deployment) in the project. 
10 ODM content should be used for all tasks that are related to component and object 

□ development. In addition, ODM is the primary source for those tasks related to 

yj obtaining characteristics associated with component- and object-based development 
(such as flexibility and reuse). When using ODM task packages, take care to ensure 

O that one consider how they link with the other elements of business integration (such 

25 as human performance). 

'-4 Data Modeling 
Description 

k O Data Modeling tools provide a graphical depiction of the logical data requirements 
"20 for the system. These tools usually support diagramming entities, relationships, and 

attributes of the business being modeled on an Entity-Relationship Diagram (ERD). 

Several techniques have evolved to support different methodologies (e.g., Chen, 

Gane & S arson, and IDEF). 

25 As systems are often built on top of legacy databases, some data modeling tools 

allow generation of an object model from the legacy database data model (DDL). By 
understanding the E-R diagram represented by the database, it is easier to create an 
efficient persistence framework, which isolates business components from a direct 
access to relational databases. Caution is required, however, as the resulting model is 

30 at best only partial, as an object model has dynamic aspects to it as well as static 
relationships, and may not correctly reflect the analysis performed in the problem 
domain. 
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When a component or object-based approach is used, data modeling is not 
performed. Rather, the object model represents both the data and the behavior 
associated with an object. In most systems, relational databases are used and the 
object model must be mapped to the data model. Standard mechanisms for mapping 
objects exist. 

Tool recommendation 

Visual Studio 

Microsoft's Visual Studio 6.0 includes a database diagram tool that helps developers 
visualize structures of tables and relationships within a relational database. See 
Figure 35, which illustrates a Database Diagram 3500 within Visual Studio 3502. 
Using this project within Visual Studio it is possible to, for example: 

• Connect to existing Oracle 7.33+ or SQL Server 6.5+ databases. 

• View, print and modify ejysting database objects including table attributes 
and properties, views 3504, columns, indexes, relationships, procedures 3506 
and functions 3508. 

• Create new database objects. 

• Generate SQL scripts for schema creation and update. 

• Version control schema information using Visual SourceSafe. 

Visual Studio 

Additionally, Rational Software's Rational Rose 98 provides Oracle8 data modeling 
functionality including schema analysis, SQL/DDL generation, reporting and editing. 
For a complete description of the product and its features visit the Rational Rose 
Website at www.rational.com. 



Performance Modeling / Management 
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Description 

The performance of a system must be analyzed as early as possible in the 
development process. Performance modeling tools support the analysis of 
5 performance over the network. A simple spreadsheet may be suitable in some well- 
known and understood environments, but dedicated performance modeling tools 
should be considered on any project with high transaction volumes or complex 
distributed architectures involving several platforms. 

10 In the case of Internet-based applications, as the Internet is not a controlled 

< 

p environment, performance modeling is limited to those components within the 

ff s domain of the controlled environment (i.e. up to the Internet Service Provider). 

01 However, in the case of intranet-based systems, where the environment is controlled 

P from end-to-end, performance modeling may be performed across the entire system. 

S 5 

~ Performance modeling for components involves the analysis of the projected level of 
r\ interaction between components and the level of network traffic generated by this 
y interaction. It is important for performance reasons that communication between 
in components is minimized, especially if these components are distributed. 

^0 

Tool recommendation 
Visual Quantify 
Tivoli 

Sniffer Basic 
25 Application Expert 

Object Modeling 

30 Description 

An object model usually contains the following deliverables: 
Class Diagram (1 per functional area or 1 per component) 
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Class Definition (1 per class) 

Class Interaction or Sequence Diagram (1 or more per scenario / workflow) 
Class State Transition Diagram (1 per Class with complex state) 

Tools such as MS Word, MS PowerPoint, ABC Flowchart (MicroGrafix), may be 
used to produce these deliverables. See Figure 36 illustrating Object Modeling 3600 
within Rational Rose 3602. Specific modeling tools do exist, however, and provide 
advantages such as cross referencing (for example, are all the methods used in the 
Interaction diagrams described in the class definitions?), automatic propagation of 
changes to other diagrams, generation of reports, and generation of skeleton code. 
However, some tools have problems with: 

• Usability and stability 

• Single users or small numbers of concurrent users 

• Proprietary repositories (usually file-based, rather than DB-based) 

• Support of extensions / customizations 

As well as providing the usual editing and graphical functionality, a good modeling 
tool should: 

• Interface with a repository (to support versioning) 

• Support multiple users 

• Generate code from the design 

The industry standard to represent the object model is UML notation (adopted by 
OMG). 

Tool recommendation 
Rational Rose 98 
Visio 5.0 

Visual Modeler 2.0 (Only valid for VB and VC++) 
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Component Modeling 
Description 

Component modeling can mean either designing components from scratch, or 
5 customizing and integrating packaged software. No specific component modeling 
tools exist, and current object modeling tools only provide limited support for 
components (e.g. for packaging related classes together). Class packages can be 
used to separate the object models for different components, with a separate class 
package(s) for the component model. This approach, however, is not enforced by 
10 current modeling tools, and requires project naming and structuring standards. 

W When component modeling is being performed using existing packaged software, 
jr some form of reverse engineering or importing is required from the modeling tool to 
7? capture the existing design. 
K5 

q During component design, the partitioned component model is designed, which 
y_ defines physical interfaces and locations for components. It is important for 
□ performance reasons that communication between components is minimized, 
especially if they are distributed. 

20 

Tool recommendation 
Rational Rose 98 
Visio 5.0 

Visual Modeler 2.0 (Only valid for VB and VC++) 

25 

Application Logic Design 
Description 

30 Application Logic Design tools graphically depicts an application. These tools 
include application structure, module descriptions, and distribution of functions 
across client/server nodes. 
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A variety of tools and techniques can be used for Application Logic Design. 
Examples are structure charts, procedure diagrams (module action diagrams), and 
graphics packages to illustrate distribution of functions across client and server. 

5 

Application Logic Design functionality is also provided by a number of Integrated 
Development Environments (IDE). 

With component-based development, Application Logic Design is performed 
10 through object and component modeling. The functionality is captured in use cases, 
p scenarios, work flows and/or operations diagrams along with interaction 
r\ diagrams/sequence diagrams. These are usually produced using MS Word, MS 
STj PowerPoint, ABC Flowcharter (Micrografix), or an object modeling tool. 

rj 5 Tool recommendation 

Rational Rose 98 
Jj Visio 5.0 

"^20 Database Design 
Description 

Database design tools provide a graphical depiction of the database design for the 
system. They enable the developer to illustrate the tables, file structures, etc. that 
25 may be physically implemented from the logical data requirements. The tools also 
represent data elements, indexing, and foreign keys. 

Many data design tools integrate data modeling, database design, and database 
construction. An integrated tool may typically generate the first-cut database design 
30 from the data model, and may generate the database definition from the database 
design. 
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With an object-based or component-based solution, the data-modeling task changes. 
In most cases, relational databases are still used, even where there are no 
dependencies on legacy systems. As there is an 'impedance mis-match* between an 
object model and a data model, a mapping activity must be undertaken. There are 
5 standard mechanisms for doing this. There are also tools on the market which allow 
the mapping of classes to relational tables, and which generate any necessary code to 
perform the database operations. 

There is a tendency (especially when dealing with legacy systems) to treat data 
10 models and object models the same. It is important to recognize that at best, the data 
O model represents only the static part of the object model and does not contain any of 
Ly the transient or dynamic aspects. The physical data model may also change 
^ significantly (for DB optimization), further confusing the issue. 

m=15 There can be performance problems with objects mapped to a relational database. In 

a worst case scenario, an object can be spread across many tables, with a single 
y select/insert for each table, and as each object is loaded one by one, the performance 
O becomes very poor. Some tools provide lazy initialization (only loading the parts as 
they are needed) and caching (minimizing DB hits). 

~20 

The current trend seems to be for object-relational databases, with vendors such as 
Oracle adding object features to their core products. Although the support provided 
at the moment is limited, it is likely that in future versions Java or C++ classes may 
be able to interface directly. 

25 

Tool recommendation 

Rational Rose 98 (Only valid for Oracle 8) 

ERwin 

30 

Presentation Design 
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Description 

Presentation design tools provide a graphical depiction of the presentation layer of 
the application. Tools in this category include window editors, report editors, and 
dialog flow (navigation) editors. Window editors enable the developer to design the 
5 windows for the application using standard GUI components. Report editors enable 
the developer to design the report layout interactively. Placing literals and 
application data on the layout without specifying implementation details such as 
page breaks. The majority of these tools generate the associated application code 
required to display these components in the target system. 

10 

Using the dialog flow (navigation) editors, the developer graphically depicts the flow 
yd of the windows or screens. The Control-Action-Response (CAR) diagram is a 
commonly used technique for specifying the design of GUI windows. 

M=15 The majority of Netcentric systems use Web browsers to provide a common cross- 
i=s platform user interface. Presentation design for this type of environment therefore 

entails the generation of HTML pages, often with additional components 
p (JavaScript, 3rd party ActiveX controls, Plug-ins) providing enhanced functionality 
1: or media content. Many tools are currently available for designing and creating web 
20 content, although HTML remains the common denominator, at the very least as a 

placeholder for the content. 

In the case of systems published on the Internet, defining the target audience is less 
straightforward than in traditional systems, but equally important. Having a good 
25 understanding of the intended audience may be a big advantage when thinking about 
user interaction with the system, and therefore, the presentation layer of the system. 

Within a ReTA based application, three types of web pages that are available 
include: 

30 
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Page Type 


Description 


Static HTML 


This page consists of a single HTML file containing 




static text, formatting, scripts, anchor tags, and 




imbedded images. This type of portion of the 




present description is the most common as it can be 




created using an ASCII text editor such as 




Windows Notepad. 




For designing web pages in a WYSIWYG format, 




Many popular editing tools are available including 




Microsoft FrontPage, Microsoft Visual InterDev, 




and HomeSite. 




Design elements include: 




Static HTML v3.2/v4.0 portion of the present 




descriptions 




Graphics/Images 




JavaScript (client and server) vl.2 


Active Server Page 


This type of web page is created dynamically at the 


(Non UI Framework) 


web server and written to the requesting client. 




These pages are useful when dynamic data is 




required within the web page itself 




1VJ.1WI U&tJXl r lKJlllX <Xg\s dllvl V laUctl illlCl-L/C V CtlV? 




popular ASP editors with Visual InterDev 




providing ASP debugging functionality as well. 


Active Server Page 


This type of web page is also created dynamically at 


(Using UI Framework) 


the web server and written to the requesting client, 




however, they make use of the ReTA User Interface 




Framework. 



Tool recommendation 
Microsoft Visual Studio 6.0 



Rational Rose 98 
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Visio 5.0 

Visual Modeler 2.0 (Only valid for VB and VC++) 

Packaged Component Integration 
Description 

Packaged components are generally thought of as third party applications or services 
that provide ready-made business logic that is customizable and reusable. 
Additionally, legacy applications can be included in these discussions when there is 
a desire to reuse portions of or an entire pre-existing application. 
One of the benefits of component-based systems is the ability to separate the 
component interfaces from their implementation. This simple feature can help 
enormously with access to both third party components and legacy applications. The 
concept of putting an object or component interface on a non-object piece of 
software is called 'wrapping.' 

There are several arguments for putting a wrapper around an third party application 
or legacy system instead of custom building or replacing the functionality that they 
provide: 

• The wrapped component may provide functionality that requires deep 
technical expertise or knowledge to develop, (e.g. hardware drivers, EDI 
applications) 

• The provided functionality may only be temporary. With a wrapper in place, 
the underlying implementation may change without affecting the consuming 
application. 

• The wrapped component can now be reused within additional applications 
without additional effort. 

• Wrapping can take considerably less time and effort than building the third 
party component or legacy application over again. The more complex the 
application being wrapped, the greater the cost savings in time and effort. 
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• Within wrapped components, it is possible to consolidate several existing 
applications into a single new service, (e.g. customer details from a ERP 
package as well as from the new system) 

5 

Procedures/Standards 

Pure Component Integration 

1 0 Component standards are maturing, particularly in eCommerce Applications. 

O Although plug and play is not yet a reality, more application and ISV vendors are 

|7j developing component based solutions for the eCommerce market place. Generally, 

^L; this is the simplest form of integration if leading-edge eCommerce architectures are 

a being deployed. 
Si 5 

^ Care should be taken to allow for the migration from one vendor to another. To 

SJ allow for this, the application developer should investigate encapsulating the 

= component within an application wrapper. 

"20 Wrapped Component Integration 

Many of today's vendors provide ActiveX or Java classes that provide a direct 
component interface into their application or services. Some vendors such as SAP 
expose component interfaces which can be accessed by ORBs e.g. Microsoft's 
25 DCOM connector. The underlying architecture however is not component-based. 

This is not a problem providing the package provides scalable and robust application 
execution. 

Another example is the use of Microsoft's COM Transaction Integrator 3700 and the 
30 Microsoft SNA Server for NT 3702. These products allow for the wrapping of CICS 
transactions in COM component stubs 3704 that can be invoked from MTS 
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components. See Figure 37, which illustrates directly calling a wrapped CICS 
component 3706. 

5 Batch and Indirect Integration 

This process of integration relies on the use of Message Oriented Middleware 
(MOM) to provide asynchronous messaging to and from the packaged application. 
This can be accomplished using Microsoft's Message Queue (MSMQ) 3800, IBM's 
MQ/Series 3802 and Level 8's Falcon Bridge 3804 (to provide MSMQ to MQ/Series 
10 communication). See Figure 38, which illustrates indirectly calling a wrapped CICS 
S component 3806. 

^ Data Integration 

Ml 5 This is the most common form of integration but restrictive because it involves 

~f=^ development of duplicated business logic, risks breaking application integrity and 

y\ causes maintenance overheads. 

~% Construction 
~20 

Construction tools and processes are used to program or build the application: client 
and server source code, windows, reports, and database. ReTA based development 
should use a base set of naming and coding standards. 

25 Tool recommendation 
Visual Studio 6.0 
Rational Rose 98 



30 



Test 
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Testing applications (client/server or NetCentric) remains a complex task because of 
the large number of integrated components involved (i.e., multi-platform clients, 
multi-platform servers, multi-tiered applications, communications, distributed 
processing, and data). The large number of components result in a large number and 
variety of testing tools. 

Test Data Management 

Description 

Members of the technology infrastructure and data architecture teams are often the 
ones who create and maintain the common test data. This requires full-time 
personnel, especially when a large number of test databases must be kept in 
synchronization. Many of the automated testing tools available on the market today 
provide test data management functionality. 

At a minimum, vendor or custom applications and processes should be in place to 
perform the following: 

• Database Schema Export & Import 

• Individual or Bulk Table Deletion and Population 

• Data Refresh/Restore 

Additional functionality may include data generation or conversion, versioning and 
validation. 

Tool Recommendation 

Many testing tools are available on the market today, some of which provide test 
data management functionality. 

Procedures / Standards 
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The ReTA Component Test Workbook Plan-Prep provides the mechanism for 
maintaining component test data required during test execution. When creating the 
test data, all attempts should be made to make the test data reusable. 

Test Data Manipulation 

Description 

There are a few avenues for the manipulation of test data. When considering this 
function during the component and assembly testing phases consider the following: 

• Create test data if the physical data model is stable. 

• Use the existing application if it can create valid data. 

• Convert production data if the Data Conversion Application and the 
production data are reliable. 

Tool Recommendation 

If possible, leverage any existing data manipulations that were included with the 
database suite. Many database vendors provide data management and manipulation 
applications with their database systems. Additionally, many development 
packages, including Microsoft Visual Studio™, provide database access and 
manipulation functionality. 

For data generation, PLATINUM TESTBytes™ is a test data generation tool that 
connects to your database to create test data for your relational databases. With 
point-and-click action, one can specify the type of data needed. TESTBytes 
automatically generates up to millions of rows of meaningful test data, eliminating 
days or weeks of time-consuming effort and reducing costs. 

Procedures / Standards 

For data conversion, the best approach is to: 

• If data is going to be shared with an existing application, attempts should be 
made to reuse test data from the legacy system. 
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• Use the existing data store capabilities to extract or massage the data into a 
format that is easily integrated into the new application. 

• Create one-time extract and formatting applications to extract the legacy 
data, perform formatting and business operations, and import the newly 

5 modified data into the new data store. 

The ReTA Component Test Workbook Plan-Prep provides the mechanism for 
maintaining component test data required during test execution. When creating the 
test data, all attempts should be made to make the test data reusable. 

10 

□ Test Planning 
BP Description 

□ The test planning function during a ReTA engagement provides an opportunity to 
~H 5 define the approaches, tools, environments and process to test the application and its 

individual components for functional and technical validation. This process is 
Zi typically assigned to someone with experience in application development using 
jff similar technologies as those to be used on the new system. 

~^20 Tool Recommendation 

The ReTA Component Test Workbook Plan-Prep provides the mechanism for 
maintaining and communicating component test information. Component test 
planning information such as component test cycles and component test conditions 
are included. Both worksheets are to be completed during the design phase by the 
25 designer. 

Test Execution 

Description 

30 If testing environments have been created, application testing scenarios and scripts 
should be created to evaluate the application functions as designed. Actual results 
are compared against expected results portion of the present description with the test 
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conditions. The use of automated testing tools is essential for fast, accurate 
regression and performance testing. Ensure the tool used for automated testing is 
easily configured. Also, ensure the scripts can be quickly updated to allow for user 
interface changes. 

Tool Recommendation 

Component Test Workbook 

The ReTA Component Test Workbook Plan-Prep provides the mechanism for 
maintaining and communicating component test information. Component test 
planning information such as component test cycles and component test conditions 
are included. Both worksheets are to be completed during the design phase by the 
designer. 

Automated Testing Tool 

There are many automated, web-based testing tools on the market today. Many tools 
provide record and playback scripting functionality. See Figure 39 which illustrates 
RSW eTest Automated Testing Tool 3900. Recommended features include: 

• Auto record and playback of test scripts 

• Data driven testing 

• Easy test modification (many tools have proprietary scripting languages) 

• Cross-browser support 

• Multi-user simulation for load & performance testing 

• Test summaries and reporting 

Procedures / Standards 

In addition to the test planning elements of the CT workbook, component test 
execution worksheets are also included: component test script, test data, and 
expected & actual results worksheets. These worksheets are to be completed by the 
developer during the build phase. These scripts may be used by the developer/tester 
to execute the individual component tests. In theory, since the steps of the 
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component test are portion of the present description, any developer or tester should 
be able to execute the test by simply following the steps outlined in the test script. 

Performance Management 

5 

Description 

Performance Management tools support application performance testing. These tools 
monitor the real-time execution and performance of software. They help to 
maximize transactions and response time to the end user. They are also useful in 
10 identifying potential bottlenecks or processing anomalies. 

%1 Procedures / Standards 

Q During the automated test execution process, the testing tool may automatically 

3 5 verify the current state of the system (i.e. actual results) against the expected state of 

JL the system (i.e. expected results) for each test case defined in the test script. 

SJ Execution status may be reported through the reporting function of the toolset. In 

2 the case of performance or lead testing, the testing tool may provide a summary 

-3 report including graphic illustrations describing the overall performance of the 

~20 system. 

Test Results Comparison 

Description 

25 Whether using automated or manual testing processes, after the completion of each 
testing cycle it should be clear as to what defects still exist within the system. By 
comparing actual results with expected results, the application tester and developer 
can quickly detect design and development errors within the system. 

30 Tool Recommendation 

The ReTA Component Test Plan-Prep Workbook provides the mechanism for 
maintaining expected and actual results. The Expected and Actual Results 
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worksheet outlines the expected result for each condition and lists the actual result 
encountered during the test execution. 

Procedures / Standards 
5 During the automated test execution process, the testing tool may automatically 

verify the current state of the system (i.e. actual results) against the expected state of 
the system (i.e. expected results) for each test case defined in the test script. 
Execution status may be reported through the reporting function of the toolset. 

10 

O Test Coverage Measurement 
HI Description 

O Test Coverage Measurement tools are used to analyze which parts of each module 
Q\5 are used during the test. Coverage analyzing tools are active during program 
]L operation and provide comprehensive information about how many times each logic 
Sj path within the program is run. This Test Management and Quality Management tool 

ensures that all components of an application are tested, and its use is a vital and 
-J3 often overlooked component of the test process. 

Tool Recommendation 

RationaPs Visual PureCoverage™ is an easy-to-use code-coverage analysis tool that 
automatically pinpoints areas of code that code that have and have not been 
exercised during testing. This greatly reduces the amount of time and effort required 
25 to test an entire application and its components, increases the effectiveness of testing 
efforts by providing insight into overall program execution, and helps ensure greater 
reliability for the entire program, not just part of it. 

Procedures / Standards 
30 Test coverage measurement ensures is used to ensure that the entire application or 
system is completely tested. A manual approach can be applied to ensure that every 
path of logic within the application is completely tested. To reduce the test 
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preparation time, an automated testing tool that provides this functionality should be 
leveraged. 

5 SIR Management 
Description 

SIR Management Tools help track each system investigation request from problem 
detection through portion of the present description resolution. 

10 

Tool Recommendation 

SIR Management Tools help track each system investigation request from problem 
detection through portion of the present description resolution. During the testing 
phases of the engagement, it may be desirable to reuse the SIR tools and processes 
15 developed for and used for overall problem tracking 
SIR Workbench 

The SIR Workbench is a Microsoft Access based tool that has been used on various 
component and client/server engagements. It provides basic functionality of 
20 entering, modifying and reporting of architecture and application problems 
encountered during the testing phases of the project life cycle. 

Procedures / Standards 

For a full description of the tool and its use, refer to the SIR Workbench . 

25 

Development Architecture Physical Model 
Purpose 

30 The ReTA Development Architecture Physical Model portion of the description 
shows the actual components comprising the Development Architecture and their 
relative location and interfaces. Additionally, the model depicts the platforms on 
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which the components may reside as well as the distribution across the environment. 
The components in the Physical Model may support a portion of a function or more 
than one function from the functional model. 

5 Physical Configuration 

Figure 40 is an illustration that describes the physical configuration necessary for 
ReTA development. The development environment was composed of the following 
hardware and software configurations: 
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Build Model 



Figure 41 illustrates the application & architecture configuration for a typical ReTA 
5 Build environment 4100. Each development workstation 4102 should be configured 
to provide systems management, configuration management and systems building 
support. In this model, ail architecture and application components & services 
reside on the developer workstation. This allows the developer to design, build, 
debug and test independently of other developers. 

10 

Assembly Test Model 



Figure 42 illustrates the application & architecture configuration for a typical ReTA 
Build environment 4200. In this model, the testing workstation 4202 is configured 
15 to provide presentation services by way of an HTML 3.2 & JavaScript 1 .2 

compatible web browser. The web/application server 4204 is configured with the 
current assembly test versions of ReTA application and architecture components. 



Security Management Architecture 

20 

Overview 



The ReTA Security Management Architecture includes security issues, concerns and 
recommendations associated with Net-Centric Computing. The Security 
25 Management Architecture deliverable is used to illustrate the potential security 

implications. The ReTA Security Management Architecture portion of the present 
description is divided into three main portions in order to encompass security 
requirements for Development, Execution and Operation Architecture. 



30 



Development Architecture Security Management 
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Preserving security of information as it travels across the Internet, or even your own 
intranet, has become increasingly complex. The Internet is a public resource 
accessible worldwide, and is built on a foundation of inherently insecure 
technologies. Information which is available across the Internet is becoming more 
5 and more sensitive as business continue to deploy to the Internet. Implementing 
effective security in our new Net Centric computing environments presents some 
challenges without a doubt, but not insurmountable ones. By designing security into 
your Net Centric solution, and implementing the appropriate application, 
infrastructure, and procedural controls, security can be appropriately aligned with 
10 business risk. See Figure 43, which illustrates an IDEA Framework 4300 with 
Q components in scope ReTA Phase 1 . 

01 Everyone today is talking about Net Centric security. Keeping up with all of the 
g security issues surrounding Net Centric technologies is more than a full time job, it 
^f5 has become a full time obsession. When designing a Net Centric solution, security 
s is always at the forefront of everyone's mind, but what are the important things to 
~5 consider? How do I know that I've addressed all the appropriate questions? How 
W may my solution affect the security of my computing environment? How may that 
5 security impact my business? This paper may answer these questions, providing an 
^0 overview of "things to consider" when designing a Net Centric solution. It may not 

attempt to provide detailed technical solutions, but it may navigate one to the right 

path to find that information. 

25 Impacts 

Security Impacts 

There is no question that the trend toward Net Centric computing may impact the 
30 traditional computing environment. Systems are much more distributed, and 

applications are being used by a larger number of people to reach new objectives 
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every day. Along with all of these changes come significant security impacts. So 
what is it about Net Centric computing that can lead to security problems? 

First of all, the Internet is a public resource. Traditionally our computer systems 
5 were only used or accessible by a small audience which we knew and could control. 
Now our computer environment is linked to the Internet, which is accessible to 
virtually anyone who has the time and the money to invest. While most of these 
people have good intentions when it comes to using your resources, some have an 
evil purpose. Threats can come from many sources: teenage hackers, spies from 
10 other companies, even curious people who inadvertently cause damage. The public 
Q nature of the Internet also increases the ability of these malicious individuals to 
|7§ collaborate and recruit others, thus strengthening their cause. The Internet contains a 
4j wide variety of information that people are interested in, from public information 
Q resources to sensitive customer databases. 

B 5 

^ In addition to the very lure of interesting information on the Internet, there are 
vj vulnerabilities inherent to Internet technologies which can make that information 

more easily compromised. In fact, the original intent of the Internet was to share 
€i information, not to be used as a business tool. Security weaknesses are widespread 
^20 and present in nearly all Internet related technologies. The very communication 

protocol used, TCP/IP, was designed with few provisions to protect the security of 

the data packet. 

Of course, security problems weren't created with the Internet; many of our 
25 standalone computer systems have the same types of security exposures. However, 
the global nature of the Internet now transfers these insecure services rapidly around 
the world. Weaknesses that before could only have been exploited by a small 
number of users with access to the system, can now be exploited by virtually anyone. 
These breaches are also now publicized to the entire Internet community. For 
30 example, many high profile web pages have recently been attacked, including 

NASA, the Department of Justice, and the CIA. Although these attacks were limited 
to vandalizing their web pages, (as far as we know), the publicity generated from the 
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attacks has raised questions about the security of their systems in general. Internet 
access not only made these attacks possible, it also publicized the attack around the 
world. 

5 This rapid transfer of information raises an issue regarding the dynamic nature of 
today's environment. The Net Centric environment includes traditional long term 
users of systems, as well as one time users who require instant logons and immediate 
connections. Security may stand in the way of business objectives if it is not flexible 
and dynamic enough to adapt to ever-changing business and technology 
1 0 requirements. In addition, new threats and risks evolve quickly in the Net Centric 
y environment, and security programs may become ineffective and obsolete if not 
yj reviewed and updated regularly. 

h: The Internet also brings with it a whole new set of legal issues, and topping the list 
=45 are potential privacy implications. Businesses can now track your every movement 
^ on the Internet, from your email and EP addresses, to each site you surfed to and 
y which ad one clicked. Does this constitute an invasion of your privacy? One may 
Q have freely given other businesses sensitive information aboutonerself, such as one's 
/J; credit card number or one's social security number. To what lengths must that 
20 business go to in order to protect that information? If and when that information is 
compromised, who is liable? What is the penalty for breaking into a computer to 
which one is not granted access? What if one just looks around and does not cause 
any damage? These questions are just beginning to be addressed as cases are 
introduced in court and legislation is passed in Congress. But we are a long way 
25 from finding all the answers. 

All of these security concerns have been widely publicized in the media, to the 
extent that the public now perceives security as a major issue on the Internet. These 
concerns may have the effect of impeding the success of an Internet solution, or even 
30 delaying a business decision to deploy to the Internet. Even as new technology 

emerges to solve many Internet related security problems, public opinion, legitimate 
or not, may still impact the success of any Internet solution. 
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Application Impacts 

There are obviously a myriad of security implications from the move towards Net 
5 Centric computing. The Internet, and the growth of local intranets, has made our 
computing environment look much different today than it did five years ago. So 
what does this mean? When designing a business solution in this new environment, 
security implications have to be considered at every step of the process. Application 
design presents a specific set of security related challenges. 

10 

Application Design 

The underlying theme in application design, from a security perspective, is to design 
in security from the beginning. Talk to Information Security representatives, and 
1 5 even internal auditors early on, and get their approval for your design. This can save 
retrofitting costs in order to achieve an adequate level of security, and may also end 
up giving one a more secure solution by integrating security right into the design of 
the application. 

20 Once one is considering security, what is the best way to design it into your 

application? Even the most pompous security expert should recognize that your 
primary goal is not to build an application with really good security, it is to build an 
application that achieves a specific business goal. The challenge is to integrate 
security into that business goal so that it may not impede efficiency. Often security 

25 is tacked on a the last minute and impedes performance in the application, such that 
users may bypass security if possible, and curse it if not possible. 

The next step is to consider the basic parameters of your application and how 
security applies to each of them. 

30 
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Who needs access to the application, i.e. what is your user group? Is it all Internet 
users or some authorized subset? Does one only have one type of user or are 
multiple levels of authorization required? 

5 Where may your application may be accessed from, the Internet or your intranet? 
How much control do one has over the security of that location and PC? 

What is the confidentiality of the information your application may be transmitting 
or accessing? What implications would there be if that information fell into the 
10 wrong hands? 

3 Once these questions have been answered one can begin to choose the appropriate 
Z tools or mechanisms to provide an adequate level of protection. 

i When designing your application, consider implementing the minimum level of 
"15 functionality and authority required to meet your business goal. This is often 
? contradictory to basic instinct when designing a new solution, but consider the 
I potential implications. If your application does not need to allow users to execute 
arbitrary operating system commands, don't let it. If your application does not need 
to run as root or supervisor, don't let it. Designing for minimum functionality may 
20 obviously be a tradeoff between business and security benefits, but in general, it is 
better meet the level of authority required, not exceed it. 

Security Integration 

25 When designing security into your application, remember that one may not have to 
re-invent the proverbial wheel. Most information security groups may have 
corporate security strategies with which one can integrate. For example, an 
enterprise wide authentication scheme may be in use, with which one can integrate 
for remote access. Or there may be a single sign-on product with which your 

30 application may need to be compatible. Even if there is not a corporate security 
strategy in place today, consider the direction that the company is moving toward, 
and provide for future integration if possible. 
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Auditing and Logging 

Application auditing and logging is often overlooked because it is less than 
5 glamorous, but it does provide security administrators with a crucial tool for 
monitoring use of an application. Good logs should be searchable for known or 
suspected patterns of abuse, and should be protected from alteration. Logs can 
monitor a virtual myriad of data, including access times, user IDs, locations from 
where the application was accessed, actions the user performed, and whether or not 
10 those actions were successfully completed. 

|Tj Web Browser Security 

O While web browsers may not be exactly part of your application design, they are 
£115 intimately related to many of the design decisions one may make, such as the 
!L programming tools one uses and the format your user interfaces take. The 
Si application programming tools portion of the description, above, discussed some 
= possible ways a Web browser can exploit application security flaws. There are also 
S design anomalies within the Web browsers themselves which can be exploited. 
~~20 Microsoft has fixed many of these flaws in their newest release of Internet Explorer, 
but their older versions are still vulnerable. This type of problem demonstrates that 
when considering integration with the major commercial web browsers, it is 
important to monitor news releases for recent security flaws. One may want to 
consider requiring your users to use the latest, most secure version of their Web 
25 browser if possible. 

Infrastructure Impacts 

Today's Net Centric computing infrastructure requires a complex mix of operating 
30 systems, web servers, database servers, firewalls, management tools, routers, and 

underlying network components. Each different component of this infrastructure has 
specific security considerations which need to be addressed. These requirements are 
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always growing and changing, as are the solutions which can be implemented. 
When designing this complex infrastructure, similar to designing an application, 
security should be considered early on in the process. 

5 Operating System Security 

It is crucial to choose an operating system (OS) which can provide adequate security; 
and once chosen it is just as important to configure that OS in a secure manner. Any 
OS must address the same basic security questions, such as restricting permissions 
10 for what each user can access, limiting what actions each user can perform, 

q providing monitoring and logging of user access, and restricting what services are 

r\ available. Windows NT is without exception. 

p NT has been publicly available for over three years now, and while security issues 
M5 may have appeared, fresh out of the box NT is a very secure OS. But there are still 
= steps to take to improve this security. Configure your OS securely from the start, 

Q implement tools where appropriate, and continue to monitor the bulletin boards and 
vendor announcements for problems as they come up. 

^20 Web Server Security 

Many of the OS security guidelines apply to web servers as well. Regardless of your 
choice of web server, it is important to configure that server securely. The server 
should be set to run under an ID which is used only by that web server, and never as 
25 root. Directory permissions should be assigned according to a need to know 
philosophy, and your portion of the present description root (where published 
information is stored) should be different from your server root (where server 
binaries and configuration files are stored.) 

30 In addition to these somewhat generic operating system security tips, there are 
several features which are specific to a web server which could create security 
exposures. In general, if one doesn't need a feature, don't turn it on; and if one does 
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need a feature, make sure the potential security risks are understood. Server side 
includes allow HTML authors to place commands inside their portion of the present 
descriptions that cause output to be modified whenever that portion of the present 
description is accessed by a user. Hackers can take advantage of server side includes 
5 if they are able to place arbitrary HTML statements on your server and then execute 
them. 

Legacy System Integration 

10 In order to truly take advantage of the power of Net Centric computing, new 
O technologies need to be mixed and integrated with existing systems. More 
uj sophisticated intranets and extranets often require on line transactions or database 
inquiries of legacy environments which may not have the level of granular control 
O required for secure access. In some cases, it may be possible to mirror the 
QT5 information from an existing platform to a more securable web server or database. 
JL This may protect the integrity of your sensitive systems while still providing the 
SI access for your on-line transactions. If a mirror system is not possible, a thorough 
pi audit should be performed of the security of your legacy system, to ensure that one is 
S providing access to only those resources which are allowed. 
^20 

Network Security 

Now one has chosen your access control mechanisms, configured your OS, and it's 
time to connect to your network. This action may strike fear into the heart of many 

25 network and system administrators, because this may create one more way network 
security can be compromised. Contrary to popular belief, it is possible to establish 
and maintain effective network security. The first step is to understand what all of 
your network components are, and how they are connected. By examining your 
network topology, one can determine where all of your access points are, and 

30 (hopefully) the way that access to them is controlled. If remote access directly into 
your network is required, the use of your modems must be appropriately restricted. 
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Don't rely on knowledge of the phone number or a single static password as 
effective security controls. 

In addition to identifying one's access points, one should examine the path that one's 
5 traffic follows, and determine if that path is vulnerable to snooping and attack. One 
of the more infamous hacker gangs, the Masters of Deception, once infiltrated a 
major telecommunication provider's data network, and had access to the corporate 
secrets of hundreds of companies as information was sent across the lines. Even if 
your data is just traveling over internal links, a network management station could 
10 still be monitoring traffic, or a sniffer could illicitly be installed anywhere along the 
f=i line. There are two major security controls that mitigate these risks: firewalls to 
>H restrict who can access your secure network, and encryption to protect your data as 
Co it's sent over an insecure network. 

J3l5 Firewalls 

j *= 

~r\ Firewalls are often thought of as THE answer to network security. There is a 
ty common misconception that purchasing and installing the "best" firewall available 
yg may automatically protect your network from the Internet. This is not necessarily 
^20 true. In fact there are many factors to consider when choosing a firewall, and when 
placing and configuring that firewall in your environment. First of all, consider the 
type of network connection your are trying to protect. Firewalls are not only used to 
separate your intranet from the Internet, they can also be used to segregate a 
particularly sensitive or particularly insecure area of your intranet from the rest of 
25 your network. Depending on the services one wants to provide your users and what 
risk one is willing to accept, your choice of the "best" firewall implementation may 
change. 

There are many different components of the firewall architecture to consider. 
30 Packet Filtering Systems selectively route packets between internal and external 
hosts by either the type of packet, the originating host address, or the target host 
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address. Packet filtering is typically implemented on a specific type of router called 
a screening router. 

Proxy Services are specialized applications or server programs that run on a firewall 
5 host, which take users' requests for Internet services (such as ftp and telnet) and 
forward them, as appropriate according to the site's security policy, to the actual 
services. The proxies provide replacement connections and act as gateways to the 
services. For this reason, proxies are sometimes known as Application Level 
Gateways . 

10 

A Bastion Host is typically a dual-homed gateway with one interface on the internal 
network and one on the external network. It can be used to run proxy services or 
perform stateful packet inspection. The bastion host typically acts as the main point 
of contact for incoming connections from the outside world, including email, ftp and 
1 5 telnet requests, and DNS queries about the site. 

A Perimeter Network or DMZ refers to a small network between your internal 
network and the Internet which provides an extra layer of security. Any publicly 
available resources one provides, such as a Web server or an ftp server, may 
20 typically be located in the DMZ, and restricted from one's internal network by a 
firewall machine or bastion host. 

There are many commercially available firewall products that provide some or all of 
these features. Which product or firewall configuration is right for one may depend 
25 on what one's network looks like, what one is trying to protect, and what your users 
require. 

Event Monitoring 

30 Before an incident can be responded to, it must first be detected. In the Net Centric 
environment, your firewall, routers, web servers, database servers, applications, and 
network management tools must be monitored to ensure they are working correctly 
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and no violations have occurred. Monitoring packages can be configured to take 
different actions on a series of specified events, such as sending an email message if 
a log fills up, flashing an icon on a system administrator's screen if someone's user 
ID is disabled, or paging a network administrator if a link to the ISP goes down. 
5 Once this initial notification takes place, there should be escalation procedures to 
decide whom to notify next. For example, if the link to the ISP goes down, how 
long does one wait before notifying one's manager? one's users? In addition, not all 
monitoring needs to be reactive. There are proactive monitoring tools available 
which can detect patterns of abuse or failure which may lead to larger problems, and 
10 can help one detect those problems before they affect your users. 

fy Backup and Recovery 

O People kick over servers, accidentally delete files, and spill coffee on machines. For 
yl5 these reasons and a host of others, Net Centric resources must be backed up in a 
IL manner so that they can be recovered. This does not mean dumping a bunch of files 
Sj onto data tapes and stacking them in a corner of the server room. An effective 
p[ backup and recovery strategy should address how backups may be taken, the media 
*y on which they may be stored, the location where they may be stored, and the 
20 frequency with which they may be taken. Backups should also be periodically tested 
to make sure that they are recoverable, for example to make sure the backup tape 
drive is still working. When designing your backup strategy one should also 
consider the specific types of applications, databases, and hardware which are in use 
in your environment. For example an Oracle database may probably not be 
25 recoverable from a .tar file. In addition to software resources, consider what would 
happen if your router or your ISP link were to go down. It may be necessary to 
maintain a backup link to a secondary service provider in the event that your ISP 
goes down for an extended period of time. 

30 Execution Architecture Security Management 
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The Execution Architecture Security focuses on Authorization, Encryption and 
Authentication in order to securely support applications and ensure data integrity 
throughout the life cycle of a single transaction. The ReTA Effort chose the 
Netcentric Architecture Framework (NCAF) to identify the appropriate components 
5 to focus on within the Execution Architecture. See Figure 44 which illustrates a 
NCAF Framework 4400 with the shaded components 4402 in scope for Phase 1 . 

Authentication 

10 Regardless of the operating system that one is using, access control is a major 

security concern. NT authenticate users by their knowledge of an ID and password 
that can be used multiple times however, all passwords are vulnerable in some 
manner. The advent of sniffing technologies allows passwords to be monitored and 
read over the network. Even if passwords are encrypted as they are sent, a keystroke 

1 5 capturing program could be installed at the client PC and used to capture passwords 
before they are encrypted. Perhaps advanced client side security can mitigate this 
threat as well, but even with the highest technology solution, a user could write his 
password down and stick it to the side of his PC, thereby defeating all of the 
technology just implemented. 

20 

The solution to this problem is some type of two factor authentication, meaning that 
users are authenticated with something they have, and something they know. The 
"something they know" can still be a password, and the "something they have" can 
range from the high end being a one time password generator, to the low end being 

25 an ID file stored on the user's PC or on a disk. In choosing an appropriate solution, 
one should consider ease of management and ease of distribution, the required 
strength of the solution, and integration into your environment. There are several 
examples of technologies which can meet your requirements, including the use of 
one-time passwords, time based passwords, or challenge response schemes. Once 

30 chosen and implemented, a secure authentication mechanism can be incorporated 

with both your operating system and your application to remove the risks associated 
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with static passwords. Some authorization options are depicted in this 
Authentication Matrix: 
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Encryption 

In Net Centric computing it is likely that eventually your data may pass through a 
network that is not secure, where your data can be snooped or even changed. In 
5 order to guarantee confidentiality over any insecure network, including the Internet, 
some type of encryption must be used. Encryption may ensure that data cannot be 
read by anyone other than the secure target server, and that the data being transferred 
has not been altered. Today there are so many different strategies for implementing 
encryption, it is often difficult to choose which scheme is most appropriate. The 
10 specific encryption strategy chosen may rely on a number of factors. 

*p What information exactly needs to be encrypted? If one is running a smart store over 
% the Internet, maybe one only needs to encrypt the single piece of data that has the 

customer's credit card information. If one is allowing their system administrators to 
ynL5 dial into their network via the Internet, one may probably want to encrypt the whole 
^ session. 

Is] How many users are there? If one want to just encrypt data between a few users and 
= one's system, a private or secret key encryption scheme may be appropriate. If one 
y20 is in a multi-user environment one may probably want to consider public key 
encryption, and the key management strategies that go along with it. 

What does one's computing environment look like? If your applications or 
operating systems provide native encryption, these may be the easiest and most 
25 secure to implement. 

Based on your answers to these questions, there are a number on encryption 
solutions available for implementation. If one is running a Netscape web server, one 
may want to consider Secure Sockets Layer, or SSL, which provides data encryption, 
30 server authentication, message integrity, and optional client authentication for a 

TCP/IP connection. Another WWW security solution is Secure Hypertext Transfer 
Protocol (S-HTTP), which is a security-enhanced version of HTTP, developed by 
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Enterprise Integration Technologies (EIT). S-HTTP supports end-to-end secure 
transactions by incorporating cryptographic enhancements to messaging at the 
application level. Pretty Good Privacy, or PGP, is a common encryption solution for 
electronic mail. 

5 

PGP may both authenticate the sender of the message, and encrypt the contents of 
the message through the use of a public key/private key pair. In electronic 
commerce solutions, the Secure Electronic Transactions (SET) specification which 
is being jointly developed by Visa and MasterCard may be considered. SET may 
10 require authentication of all parties involved with a credit card transaction through 

the use of digital signatures and certificates, and may use a separate encryption 
p handshake in order to guarantee both confidentiality and integrity. Other encryption 
'ff 5 solutions include Point to Point Tunneling Protocol (PPTP), Private Communication 
Cm Protocol (PCT), or the use of CryptoAPL Some available encryption options are 
depicted in the following Encryption Matrix: 
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encryption services 
usually provide 
increased 
performance over 
software based 
encryption. 










Protocol 
Specific VPN 


A secure, end-to- 
end connection is 
established through 
encryption for a 
specific protocol. 


- Reduced cost 
over traditional 
VPN 

- Reduced 
implementation 
time compared 
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Authorization 

When a user requests access to network resources, the Authorization service 
determines if the user has the appropriate permissions and either allows or disallows 
the access. (This occurs after the user has been properly authenticated.) 

5 

The following are examples of ways to implement Authorization services: 

Network Operating Systems - Authorization services are bundled with all network 
operating systems in order to control user access to network resources. 

10 

Servers, Applications, and Databases - Authorization can occur locally on a server to 
limit access to specific system resources or files. Applications and databases can also 
authorize users for specific levels of access within their control. (This functionality 
is within the Environment Services grouping in the execution architecture.) 

15 

Firewall Services protect sensitive resources and information attached to an Intxxnet 
network from unauthorized access by enforcing an access control policy. 

Recommendation 

20 ReTA may utilize all Windows NT-based resources, including those accessed using 
a Web browser, are represented as objects that can be accessed only by authorized 
Windows NT-based users. Access may be controlled through an Access Control 
List (ACL). 

25 

Operations Architecture Security Management 

The Operations Architecture is a combination of tools, support services, procedures, 
and controls required to keep a production system up and running efficiently. Unlike 
30 the Execution and Development Architectures, its primary users are the system 
administrators and the production support personnel. 
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All components of the Operations Architecture are integral to the successful 
management of a distributed environment. Any processes, procedures, or tools 
developed or chosen as an operational management solution for a specific 
operational area must be able to integrate with any existing or planned process, 
5 procedure, tool solutions for other Operations Architecture areas. See Figure 45 
which illustrates a MODEnc Framework 4500 with an event processing component 
4502 and an event and data generation component 4504. 



Execution Architecture Design 

10 

Overview 



The Netcentric Architecture Framework (NCAF) identifies the run-time services 
required by Netcentric applications. The ReTA design effort used this framework to 
15 define the ReTA Execution Architecture requirements. Taken in the NCAF context, 
this portion of the present description describes the ReTA Execution Architecture 
implementation (through custom and/or vendor components) of the required run- 
time services. 



20 The NCAF categorizes the runtime services into the following logical areas (see 
Figure 46 which illustrates the NCAF Framework 4600): 



• 


Presentation Services 4602 


• 


Information Services 4604 


• 


Communication Services 4606 


• 


Communication Fabric Services 4608 


• 


Transaction Services 4610 


• 


Environment Services 4612 


• 


Base Services 4614 


• 


Business Logic 4616 



30 
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Execution Architecture Component Design 
Purpose 

5 The Execution Architecture Component Design portion of the description describes 
the ReTA implementation of the NCAF defined run-time services. This portion of 
the description also maps the ReTA application architecture frameworks into the 
appropriate NCAF service component descriptions. 

10 The ReTA Application Architecture comprises the following frameworks: 



Framework Services 
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Session 


Security 




User identification 




Page access authorization - Session scope 




Automatic abort — timeout 




Customized information delivery 




Customized user interface 




Customized application access 




Manage user session 




Inform user on session status 




Abort session 




Flow control 




Page to open on action 




Pages of activity 




Maintain context 




Activity context 




Business Object context - shared among activities 




Message Broadcast 




pmctpr 1 1 ct/^n p*t* 
JXC^loLCI UoLCIlCI 




Broadcast Message to registered listeners 




Encryption 




Encode Database User Name and Password 




Decode Database User Name and Password 
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Activity 


Provide a logical unit of work 

Microsoft Transaction Server transaction principles 

Maintain context 

Business Object context 

UI context — List boxes 

Sub-activity context 

Security 

Page access authorization - Activity scope 

Validation 

Pre-conditions 

Post-conditions 

&UQ-s\ciiviTy - omaiiesi grainea ousiness logic 
Execute business logic 

Fi£>v - mapping between a user interface and a business object 
Capture user entry 
Display value entered 


Persistence 


Database Connection 

Uncouple database connection from application 

Database mapping 

Map an object to a database table 

Object query 

Easily iterate through the results 
Record locking 
Optimistic locking 
Pessimistic locking 
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Event 


Register event 


Handler 


Create event 




Maintain event reference 




Process event 




Information 




Warning 




Logical Unit of Work 




Fatal 




7~) ;cn//7i; &\}£>vi /c 




Translate event 




Inform user 




Persist event 




Log event to database 
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User Interface 


Generate UI Items 




Form 




Push Button 




Text Box (single-line entry field) 




Text Area (multi-line entry field) 




Radio Button group 




Check Box 




Drop Down List Box 




Blank Item 




Static Table 




Single-Select List Box 




Generate UI actions 




JavaScript - action shell 




T f\ * A t a A 1 ' % A ' 

JavaScnpt - data type validation 




Jdvaocripi - tiaia range vaiiud.ii on 




JavaScript - automatic navigation action 




Generate Page Format 




Cascading Style Sheet 




Form (grid layout for form elements) 


Codes Table 


Retrieve from Codes Table 




Retrieve single decode value 




Retrieve all decode values 




Maintain Codes Table 




Update single Code/Decode 




Update all Codes/Decodes 




*spt Table TsTamp 




Add new Code/Decode 




Remove Code/Decode 




Add Table 




Remove Table 



Base Services 
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Base Services provide server-based support for delivering applications to a wide 
variety of users over the Internet, intranet, and extranet. 

5 Web Server Services 

Description 

Enables organizations to manage and publish information and deploy Netcentric 
applications over the Internet and Intranet environments. These services support the 
10 following: managing portion of the present descriptions in multiple formats, 

handling of client requests for HTML pages, processing server-side scripts, and 
caching web pages to improve performance. 

ReTA implementation 
15 ReTA implements web server services through Microsoft's Internet Information 
Server 4.0 (IIS). IIS provides the following services: 

• Process requests for static and dynamic web pages and graphics. 

• Implement appropriate security and authentication to public and private areas 
of a web site. 

20 • Execute application specific Active Server Pages. 

• Implement web activity tracking and reporting. 

• Implement application state and management capability. 

ReTA uses the US Session object to hold references to architecture and application 
25 components during the user session. 



Communication Services 



30 



Network services provided by the Communications Services layer are grouped into 
four major categories of functionality: Virtual Resource, Directory, Messaging, and 
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Security services. The Virtual Resources Component is not implemented by ReTA 
Phase 1. 

Directory Services 

5 

A full-featured Directory Service organizes, categorizes and names networked 
resources in order to provide a comprehensive picture of clients, servers, users, 
applications and other resources. The service typically includes a database of 
objects, representing all nodes and resources on a network. The database manages 
1 0 relationships between users and networks, network devices, network applications, 
and information on the network. The Directory service performs the following 
functions: 

• Stores information about network resources and users and tracks 
relationships 

15 • Organizes resource access information in order to aid resources in locating 

and accessing other resources throughout the network 

• Provides location transparency, since resources are accessed through a 
directory rather than based on their physical location 

• Converts between logical resource names and physical resource addresses 

20 • Interacts with Security services such as authentication and authorization track 

identities and permissions 

• Provides single network logon to file and print resources; can provide single 
network logon for network applications that are integrated with the Directory 
service 

25 • Distributes directory information throughout the enterprise (for reliability and 

location-independent access) 

• Synchronizes multiple directory databases 

• Enables access to heterogeneous systems (integration of various network 
operating systems, platforms, etc.) 

30 



Domain Services 
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Description 

A network domain is a set of network nodes under common control (i.e., common 
5 security and logins, unified addressing, coordinated management, etc.). Domain 
services manage these types of activities for the network nodes in a domain. 
Domain services may be limited in their ability to support heterogeneous systems 
and in the ability to scale to support the enterprise. 

10 ReTA implementation 

ReTA implements domain services through Microsoft's NT 4.0 Server. 

Name Services 

15 

Description 

The Name service creates a logical "pronounceable" name in place of a binary 
machine number. These services could be used by other communications services 
20 such as File Transfer, Message Services, and Terminal Services. A Name service 
can be implemented on its own, or as part of a full-featured Directory service. 

ReTA implementation 

25 ReTA implements name services through Microsoft's NT 4.0 Server. 
Messaging Services (Core) 

Broadly defined, Messaging services enable information or commands to be sent 
between two or more recipients. Recipients may be computers, people, or processes 
within a computer. Core Messaging services are categorized by the characteristics of 
30 the information being transferred: 
File Transfer 
RPC 



Message-Oriented Middleware 
Streaming 



- Not in scope for ReTA Phase 1 

- Not in scope for ReTA Phase 1 



File Transfer 

5 

Description 

File Transfer services enable the sending and receiving of files or other large blocks 
of data between two resources. In addition to basic file transport, features for 
security, guaranteed delivery, sending and tracking sets of files, and error logging 
10 may be needed if a more robust file transfer architecture is required. 

ReTA implementation 

ReTA implements file transfer services through Microsoft's Internet Information 
Server 4.0 (IIS) using the HyperText Transfer Protocol (HTTP). Within a Web- 
1 5 based environment, Web servers transfer HTML pages to clients using HTTP. 
HTTP can be thought of as a lightweight file transfer protocol optimized for 
transferring small files. HTTP reduces the inefficiencies of the FTP protocol. HTTP 
runs on top of TCP/IP and was developed specifically for the transmission of 
hypertext between client and server. 



RPC (Remote Procedure Calls) 
Description 

RPCs (Remote Procedure Calls) are a type of protocol by which an application sends 
25 a request to a remote system to execute a designated procedure using the supplied 
arguments and return the result. RPCs emulate the function call mechanisms found 
in procedural languages. This means that control is passed from the main logic of a 
program to the called function, with control returning to the main program once the 
called function completes its task. 



20 



30 



ReTA implementation 
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ReTA implements RPC services through Microsoft's COM/DCOM mechanism and 
the Internet Information Server 4.0 (IIS) using HTTP. 

Messaging Services (Specialized) 

5 

Specialized Messaging services extend the Core Messaging services to provide 
additional functionality, including: 

Provides messaging among specialized systems by drawing upon basic messaging 
capabilities 
10 Defines specialized message layouts 

Defines specialized inter-system protocols 

Suggests ways in which messaging draws upon directory and security services in 
order to deliver a complete messaging environment 

1 5 Database Access 

Description 

Database Messaging services (also known as Database Access Middleware) provide 
connectivity for clients to access databases throughout the enterprise. Database 
20 messaging software draws upon basic inter-process messaging capabilities (e.g., 
RPCs) in order to support database connectivity. 

ReTA implementation 

ReTA implements Database Messaging services through Microsoft's Open Database 
25 Connectivity (ODBC) mechanism. ReTA abstracts database connection from the 
application developer through the Microsoft Transaction Server (MTS) 2.0 
connection pooling mechanism. 

Object Messaging 

30 

Description 
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Object Messaging enables objects to transparently make requests of and receive 
responses from other objects located locally or remotely. Objects communicate 
through an Object Request Broker (ORB). An ORB enables client objects to access 
server objects either locally or remotely over a network and invoke operations (i.e. 
5 functions and methods) on them. ORBs typically provide interoperability between 
heterogeneous client and server environments: across languages and/or operating 
systems and/or network protocols. 

ReTA implementation 

10 ReTA implements Object Messaging services through Microsoft's COM/DCOM 
mechanism. 

Security Services 

15 Communications Security services control access to network-attached resources. 
Combining network Security services with security services in other parts of the 
system architecture (e.g., application and database layers) results in robust security. 

Authentication 

20 

Description 

Authentication services verify network access requests by validating that users are 
who they claim to be. For secure systems, one or more authentication mechanisms 
can be used to validate authorized users and to verify to which functions and data 
25 they have access. 

ReTA implementation 

ReTA implements Authentication services through Microsoft's NT 4.0 Server (and 
HS). 

30 

Authorization 
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Description 

Authorization services determine if users have appropriate permissions and either 
allows or disallows the access. 

5 ReTA implementation 

ReTA implements Authorization services through Microsoft's NT 4.0 Server (and 
IIS). ReTA also supports application defined "required workflow sequence" web 
page access authorization through the ReTA Session framework. 

10 Encryption 

§7j Description 

4j Encryption services encrypt data prior to network transfer to prevent unauthorized 

p interception. Encryption has two main components: the encryption algorithm, which 

£7 15 is the series of steps that is performed to transform the original data; and the key, 
l_ which is used by the algorithm in some way to encrypt the message. Typically, the 

%j algorithm is widely known, while the key is kept secret. There are several types of 

IS? encryption in use today, including: 

O Secret key cryptography - uses one key (the secret key) both to encrypt the 

^ 20 message on one side and to decrypt the message on the other side. 

Public key cryptography - uses two keys, the public key and the private key. The 
public key and private key are mathematically related so that a message encrypted 
with the recipient's public key may be decrypted with the recipient's private key. 
Therefore, the public key can be widely published, while the private key is kept 
25 secret. 

ReTA implementation 

ReTA implements Encryption services through the Secure Sockets Layer (SSL) 
mechanism. ReTA also implements encryption for the User ID and User Password 
30 used by the ODBC mechanism through the ReTA Session framework. 

Environment Services 
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Environment Services provide miscellaneous application and system level services 
that do not deal directly with managing the user-interface, communicating to other 
programs, or accessing data. Sub-components covered during the Phase 1 of ReTA 
5 include: Application Services, Component Framework, Operating System, Runtime 
Services, and System Services. 

Application Services 

Application Services are miscellaneous services which applications can use for 
10 common functions. These common functions can apply to one application or can be 
used across applications. They include: Application Security Services, Error 
Handling/Logging Services, State Management Services, Help Services, and Other 
Common Services. 

15 Application Security 

Description 

Besides system level security such as logging into the network, there are additional 
security services associated with specific applications. These include: 
20 User Access Services - set of common functions that limit application access to 
specific users within a company or external customers. 

Data Access Services - set of common functions that limit access to specific data 
within an application to specific users or user types (e.g., secretary, manager). 
Function Access Services - set of common functions that limit access to specific 
25 functions within an application to specific users or user types (e.g., secretary, 
manager). 

ReTA implementation 

ReTA implements Application Security through the ReTA Session and Activity 
30 frameworks. The Session framework provides "Session level Page access 

authorization", "User identification" and "session timeout" services. The Activity 
framework provides "Activity level Page access authorization". 
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Codes Table Services 
Description 

5 Codes Table Services enable applications to utilize externally stored parameters and 
validation rules. For example, an application may be designed to retrieve the tax rate 
for the State of Illinois. When the user enters "Illinois" on the screen, the application 
first validates the user's entry by checking for its existence on the "State Tax Table", 
and then retrieves the tax rate for Illinois. Note that codes tables provide an 
10 additional degree of flexibility. If the tax rates changes, the data simply needs to be 
~ updated; no application logic needs to be modified. 

m ReTA implementation 

J; ReTA implements Codes Table Services through the ReTA Codes Table framework. 

ms 

I Error Handling/Logging 

L=j Description 

^ Error Handling Services support the handling of fatal and non-fatal hardware and 
C E 20 software errors for an application. An error handling architecture takes care of 

presenting the user with an understandable explanation of what has happened and 
coordinating with other services to ensure that transactions and data are restored to a 
consistent state. 

25 Logging Services support the logging of informational, error, and warning messages. 
Logging Services record application and user activities in enough detail to satisfy 
any audit trail requirements or to assist the systems support team in recreating the 
sequence of events that led to an error. 

30 ReTA implementation 

ReTA implements Error Handling/Logging Services through the ReTA Event 
Handler and Persistence frameworks. 
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Other Common Services 
Description 

5 Catchall category for additional reusable routines useful across a set of applications 
(e.g., Date Routines, Time Zone Conversions, Field Validation Routines). 

ReTA implementation 

ReTA implements client side Field Validation Services through the ReTA UI 
10 framework. 

hi State Management 

O Description 

M= 1 5 State Management Services enable information to be passed or shared among 
l_ windows and/or Web pages and/or across programs. In Netcentric environments, the 
SI HTTP protocol creates a potential need for implementing some form of Context 
q Management Services (storing state information on the server). The HTTP protocol 
^£ is a stateless protocol. Every connection is negotiated from scratch, not just at the 
20 page level but for every element on the page. The server does not maintain a session 
connection with the client nor save any information between client exchanges (i.e., 
web page submits or requests). Each HTTP exchange is a completely independent 
event. Therefore, information entered into one HTML form must be saved by the 
associated server application somewhere where it can be accessed by subsequent 
25 programs in a conversation. 

ReTA implementation 

ReTA implements State Management Services through Microsoft's IIS Session 
component and the ReTA Session, Activity and UI frameworks. 

30 

Component Framework 
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Description 

Component Framework Services provide an infrastructure for building components 
so that they can communicate within an application and across applications, on the 
same machine or on multiple machines across a network, to work together 
5 COM/DCOM and CORBA described in Communication Services are the two 
leading component industry standards. These standards define how components 
should be built and how they should communicate. 

Object Request Broker (ORB) services, based on COM/DCOM and CORBA, focus 
10 on how components communicate. Component Framework Services, also based on 
5 CORBA and COM/DCOM, focus on how components should be built. 

=p ReTA implementation 

ReTA implements Component Framework Services through the ReTA Activity 
^15 framework. 

I _\ Operating System 

Description 

20 Operating System Services are the underlying services such as multi-tasking, paging, 
memory allocation, etc., typically provided by today's modern operating systems. 
Where necessary, an additional layer or Application Programming Interface (API) 
may be provided to gain either operating system independence or a higher level of 
abstraction for application programmers. 

25 

ReTA implementation 

ReTA implements Operating System Services through the NT 4.0 operating system. 
Runtime Services 

30 
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Runtime services convert non-compiled computer languages into machine code 
during the execution of a program. They include: Language Interpreter Service and 
Virtual Machine Service. 

5 Language Interpreter 

Description 

Language Interpreter Services decompose a 4th generation and/or a scripting 
languages into machine code (executable code) at runtime. 

10 

w ReTA implementation 

yQ ReTA implements Language Interpreter Services through NT server 4.0 and IIS 4.0. 

yol 5 Virtual Machine 
O Description 

hi Typically, a Virtual Machine is implemented in software on top of an operating 
^ system, and is used to run applications. The Virtual Machine provides a layer of 
y320 abstraction between the applications and the underlying operating system and is 
often used to support operating system independence. 

ReTA implementation 

ReTA implements Virtual Machine Services through NT 4.0 Virtual Machine 
25 component. 

System Services 

Services which applications can use to perform system-level functions. These 
30 services include: System Security Services, Profile Management Services, Task and 
Memory Management Services, and Environment Verification Services. 
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Environment Verification 
Description 

Environment Verification Services ensure functionality by monitoring, identifying 
5 and validating environment integrity prior and during program execution, (e.g., free 
disk space, monitor resolution, correct version). These services are invoked when an 
application begins processing or when a component is called. Applications can use 
these services to verify that the correct versions of required Execution Architecture 
components and other application components are available. 

_10 

,]g Profile Management 
J= Description 

Profile Management Services are used to access and update local or remote system, 
^15 user, or application profiles. User profiles, for example, can be used to store a 
q variety of information such as the user's language and color preferences to basic job 
1 1 function information which may be used by Integrated Performance Support or 
O Workflow Services. 

20 ReTA implementation 

ReTA implements Profile Management Services through ReTA Session framework. 

System Security 

25 

Description 

System Security Services allow applications to interact with the operating system's 
native security mechanism. The basic services include the ability to login, logoff, 
authenticate to the operating system, and enforce access control to system resources 
30 and executables. 

Task & Memory Management 
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Description 

Task & Memory Management Services allow applications and/or other events to 
control individual computer tasks or processes, and manage memory. They provide 
5 services for scheduling, starting, stopping, and restarting both client and server tasks 
(e.g., software agents). 



ReTA implementation 

ReTA implements Task & Memory Management Services through MTS 2.0. 

10 

«, Information Services 



m Information Services manage electronic data assets and enable applications to access 

E and manipulate data stored locally or remotely in portion of the present descriptions 

tf315 or databases. They minimize an application's dependence on the physical storage and 

3 location within the network. Information Services can be grouped into two 

= categories: Database Services, and Portion of the present description Services. 

bj Portion of the present description Services may not be covered during ReTA Phase 

«20 

Database Services 

Database Services are responsible for providing access to a local or a remote 
database, maintaining integrity of the data within the database and supporting the 
25 ability to store data on either a single physical platform, or in some cases across 

multiple platforms. Database Services include: Access Services, Indexing Services 
and Security Services. 

Access 

30 

Description 
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Access Services enable an application to retrieve data from a database as well as 
manipulate (insert, update, delete) data in a database. This can be done through the 
following: 

Standards Based Structured Query Language (SQL) API 
5 SQL Gateways 

Distributed Relational Data Access (DRDA) 

ReTA implementation 

ReTA implements Database Access Services through the ReTA Persistence 
10 framework^ which utilizes the Standards Based SQL API approach through ODBC. 

S Indexing 

J: Description 

=£15 Indexing Services provide a mechanism for speeding up data retrieval. In relational 

1 databases one or more fields can be used to construct the index. So when a user 

Hf searches for a specific record, rather than scanning the whole table sequentially the 

yj index is used to find the location of that record faster. 

CI20 ReTA implementation 

ReTA implements Database Indexing Services through the Database Management 
System (either Oracle or SQL Server). 

Security 

25 

Description 

Security Services enforce access control to ensure that records are only visible or 
editable by authorized people for approved purposes. Most database management 
systems provide access control at the database, table, or row level as well as 
3 0 concurrency control . 



ReTA implementation 
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ReTA implements Database Security Services through the Database Management 
System (either Oracle or SQL Server). 

Presentation Services 

5 

Presentation Services enable an application to manage the human-computer 
interface. This includes capturing user actions and generating resulting events, 
presenting data to the user, and assisting in the management of the dialog flow of 
processing. Typically, Presentation Services are only required by client workstations. 
10 Sub-components covered during the Phase 1 of ReTA include: Window System, 
r= Desktop Manager, Form, Web Browser, Report & Print, and Direct Manipulation. 

jg: Desktop Manager 

Ml 5 Description 

p Desktop Manager emulates the idea of a physical desktop allowing one to place 

^ portion of the present descriptions on the desktop, launch applications by clicking on 

Q a graphical icon, or discard files by dragging them onto a picture of a waste basket. 

; k 

20 ReTA implementation 

ReTA implements Desktop Manager Services through the NT 4.0 operating system. 

Direct Manipulation 

25 Description 

Direct Manipulation Services enable applications to provide a direct manipulation 
interface (often called "drag & drop"). 

ReTA implementation 

30 ReTA implements Desktop Manager Services through the NT 4.0 operating system. 



Form 
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Description 

Form Services enable applications to use fields to display and collect data. Form 
Services provide support for: Display, Mapping Support, and Field Interaction 
5 Management. 

ReTA implementation 

ReTA implements Form Services through the NT 4.0 operating system. 
10 Report & Print 

; — 5 

43 Description 

fn Report and Print Services support the creation and on-screen previewing of paper or 

E photographic portion of the present descriptions which contain screen data, 

fl5 application data, graphics or images. 

w ReTA implementation 

Ul ReTA implements Report and Print Services through the NT 4.0 operating system. 

J220 Web Browser 

Web Browser Services allow users to view and interact with applications and portion 
of the present descriptions made up of varying data types, such as text, graphics, and 
audio. These services also provide support for navigation within and across portion 
25 of the present descriptions no matter where they are located, through the use of links 
embedded into the portion of the present description content. Web Browser Services 
retain the link connection, i.e., portion of the present description physical location, 
and mask the complexities of that connection from the user. Web Browser services 
can be further subdivided into: Browser Extension, Form, and User Navigation. 

30 



Browser Extension 
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Description 

Browser Extension Services provide support for executing different types of 

applications from within a Browser. These applications provide functionality that 

extend Browser capabilities. The key Browser Extensions are: 

Plug-in - a plug-in is a software program that is specifically written to be executed 

within a browser for the purpose of providing additional functionality that is not 

natively supported by the browser, such as viewing and playing unique data or media 

types. 

Helper Application/Viewer - is a software program that is launched from a browser 
for the purpose of providing additional functionality to the browser. 
ActiveX control - is also a program that can be run within a browser, from an 
application independent of a browser, or on its own. 

ReTA implementation 

ReTA supports Browser Extensions through Netscape Navigator and Internet 
Explorer. 

Form 

Description 

Like Form Services outside the Web Browser, Form Services within the Web 
Browser enable applications to use fields to display and collect data. The only 
difference is the technology used to develop the Forms. The most common type of 
Forms within a browser are Hypertext Markup Language (HTML) Forms. The 
HTML standard includes tags for informing a compliant browser that the bracketed 
information is to be displayed as an editable field, a radio button, or other form-type 
control. Currently, HTML browsers support only the most rudimentary forms - 
basically providing the presentation and collection of data without validation or 
mapping support. When implementing Forms with HTML, additional services may 
be required such as client side scripting (e.g., VB Script, JavaScript). 

ReTA implementation 



-243- 



ReTA implements Form Services through the NT 4.0 operating system, Internet 
Explorer 4.0 and Netscape Navigator 4.0. ReTA supports creating the form objects 
and the JavaScripts used by the browsers with the ReTA UI framework. 

5 User Navigation 

Description 

User Navigation Services within the Web Browser provide a user with a way to 
access or navigate between functions within or across applications. These User 
10 Navigation Services can be subdivided into three categories: 

O Hyperlink - the hyperlink mechanism is not constrained to a menu, but can be used 
iTs anywhere within a page or portion of the present description to provide the user with 
navigation options. 

□ Customized Menu - a menu bar with associated pull-down menus or context- 
f| 5 sensitive pop-up menus. 

s __ Virtual Reality - A virtual reality or a virtual environment interface takes the idea of 
Sj an image map to the next level by creating a 3-dimensional (3-D) environment for 
!i? the user to walk around in. 

^20 ReTA implementation 

ReTA implements the Hyperlink functionality of web browser Navigation Services 
through the ReTA UI framework. 

Window System 
25 Description 

Typically part of the operating system, the Window System Services provide the 
base functionality for creating and managing a graphical user interface (GUI) ~ 
detecting user actions, managing windows on the display, and displaying 
information in windows. 

30 

ReTA implementation 

ReTA implements Window System Services through the NT 4.0 operating system. 
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Transaction Services 

A transaction is a unit of work that has the following (ACED) characteristics: 
5 A transaction is atomic; if interrupted by failure, all effects are undone (rolled back). 
A transaction produces consistent results; the effects of a transaction preserve 
invariant properties. 

A transaction is isolated; its intermediate states are not visible to other transactions. 

Transactions appear to execute serially, even if they are performed concurrently. 
10 A transaction is durable; the effects of a completed transaction are persistent; they 
_ are never lost (except in a catastrophic failure). 

A transaction can be terminated in one of two ways: the transaction is either 

=p committed or rolled back. When a transaction is committed, all changes made by the 

y§5 associated requests are made permanent. When a transaction is rolled back, all 

^ changes made by the associated requests are undone. 

= /j Transaction Services provide the transaction integrity mechanism for the application. 

Q This allows all data activities within a single business event to be grouped as a 

y|0 single, logical unit of work. 

Transaction Monitor 

Description 

25 The Transaction Monitor Services are the primary interface through which 

applications invoke Transaction Services and receive status and error information. 
Transaction Monitor Services, in conjunction with Information Access and 
Communication Services provide for load balancing across processors or machines 
and location transparency for distributed transaction processing. 

30 

ReTA implementation 
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ReTA implements Transaction Monitor Services through MTS 2.0. ReTA uses the 
Activity framework to define a transaction. 



Resource Management 

5 

Description 

A Resource Manager provides for concurrency control and integrity for a singular 
data resource (e.g., a database or a file system). Integrity is guaranteed by ensuring 
that an update is completed correctly and entirely or not at all. Resource 

1 0 Management Services use locking, commit, and rollback services, and are integrated 

O with Transaction Management Services. 

^ ReTA implementation 

□ ReTA implements Resource Manager Services through MTS 2.0. 

8 

Transaction Management 
™ Description 

y3 Transaction Management Services coordinate transactions across one or more 
2t) resource managers either on a single machine or multiple machines within the 
network. Transaction Management Services ensure that all resources for a 
transaction are updated, or in the case of an update failure on any one resource, all 
updates are rolled back. 

25 ReTA implementation 

ReTA implements Transaction Management Services through Microsoft's 
Distributed Transaction Manager and MTS 2.0. 

Transaction Partitioning 

30 

Description 
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Transaction Partitioning Services provide support for mapping a single logical 
transaction in an application into the required multiple physical transactions. For 
example, in a package or legacy rich environment, the single logical transaction of 
changing a customer address may require the partitioning and coordination of several 
physical transactions to multiple application systems or databases. Transaction 
Partitioning Services provide the application with a simple single transaction view. 

ReTA implementation 

ReTA implements Transaction Partitioning Services through Microsoft's Distributed 
Transaction Manager and MTS 2.0. 

Business Logic 

The execution architecture services are all generalized services designed to support 
the applications Business Logic. Normally, how Business Logic is to be organized is 
not within the scope of the execution architecture. However, the ReTA Application 
Frameworks extend the services of the execution architecture to support the 
"Interface Controller Model" (ICM) pattern approach to packaging the Business 
Logic as components. 

Business Logic is the core of any application, providing the expression of business 
rules and procedures (e.g., the steps and rules that govern how a sales order is 
fulfilled). As such, the Business Logic includes the control structure that specifies 
the flow for processing business events and user requests. In a ReTA application, the 
Application Frameworks define a structured approach to the concepts of Interface, 
Application Logic, and Data Abstraction. 

Interface logic interprets and maps the actions of users into business logic processing 
activities. With the assistance of Presentation Services, Interface logic provides the 
linkage that allows users to control the flow of processing within the application. 
ReTA implements this service through the UI and Activity Frameworks. 



-247- 



Application Logic is the expression of business rules and procedures (e.g., the steps 
and rules that govern how a sales order is fulfilled). As such, the Application Logic 
includes the control structure that specifies the flow for processing for business 
events and user requests. The isolation of control logic facilitates change and 
5 adaptability of the application to changing business processing flows. ReTA 
implements this service through the Activity Framework. 

Information Access Services isolate the Business Logic from the technical specifics 
of how information is stored (e.g., location transparency, RDBMS syntax, etc.). Data 

10 Abstraction provides the application with a more logical view of information, further 
insulating the application from physical information storage considerations. ReTA 

J3 implements this service through the Persistence Framework. 

=P The ReTA Application Frameworks provides services that encourage and support 

j| the thin-client model. Also, the Frameworks shield business logic developers from 

^ the details and complexity of architecture services (e.g., information services, 

□ component services) and other business logic. 

2§ Execution Architecture Physical Model 
Purpose 

The ReTA Execution Architecture Physical Model portion of the description shows 
25 the actual components comprising the Execution Architecture and their relative 

location and interfaces. Additionally, the model depicts the platforms on which the 
components may reside as well as the distribution across the environment. The 
components in the Physical Model may support a portion of a function or more than 
one function from the functional model. 

30 

Physical Configuration 
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The content for this portion of the description is defined in the Technology 
Infrastructure Procurement List portion of the present description. 

Physical Model 

5 

Figure 47 illustrates the components that comprise the ReTA execution architecture 
4700 and their physical location. In particular, the components are grouped through 
their association with the client 4702, network 4704, web server 4706, application 
server 4708, and database server 4710. 

10 

Operations Architecture Design 

q Overview 

s The Operations Architecture is a combination of tools, support services, procedures, 
Ci and controls required to keep a production system up and running efficiently. Unlike 

the Execution and Development Architectures, its primary users are the system 
=j3 administrators and the production support personnel. With reference to Figure 48, 
all components of the Operations Architecture 4800 are integral to the successful 
management of a distributed environment. Any processes, procedures, or tools 
developed or chosen as an operational management solution for a specific 
operational area must be able to integrate with any existing or planned process, 
procedure, tool solutions for other Operations Architecture areas. 

25 

Operations Architecture Component Design 
Physical Environment 4802 
30 Implementing - Initial Installation 



Description 
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Initial Installation prepares the physical location for the rollout of a new site or 
service, pre-assembles the equipment (hardware and software) based on developed 
specifications, installs the equipment and tests that the equipment is fully functional 
prior to allowing the users to utilize the system in a production environment. 
5 Precise build procedures must be delivered early enough to drive Release Testing, 
Procurement, and rollout plans. For large multi site installations that require 
significant rollout of new hardware, optimization of the configuration tasks 
(hardware and software) can be achieved through the use of a central staging facility. 

1 0 Planning Considerations 

The deployment of the physical environment must be scheduled as early as possible, 
=jj and detailed communication regarding the technology infrastructure deployment plan 
:if should be distributed regularly to key stakeholders. 

jg Where a pilot implementation has taken place previously, or is in progress, the 
=~ experiences from this activity need to be incorporated into the deployment plans. 
□ The purpose of a pilot implementation essentially is to minimize the risks of full 
implementation. Any experiences from the pilot should be identified and plans to 
B avoid trouble, or accelerate progress, should be included within the deployment 
2§ work plan. 

Ensure that the organizational functions are ready for the change. Functions of the 
organization may need to be ready for the technology infrastructure change before it 
is deployed. These functions include: 

25 

Help Desk 
Support Systems 
System Maintenance 
Operations 

30 

The organizations supporting these functions need to understand how their support 
roles may change, and what new demands the technology infrastructure may place 
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upon them. Ensuring that these areas are comfortable supporting the new 
infrastructure, and that they are able to troubleshoot problems is critical to the 
overall support and success of the business capability. 

Event / Data Management 

Event /Data management is the process of receiving and classifying events. An 
event is a change in the state of a network component. There are two types of events 
- solicited and unsolicited. A solicited event results from the direct (synchronous) 
polling of a network component 4900 by a network management station 4902 as 
represented in Figure 49. 

An unsolicited event occurs when a network component 5000 sends 
(asynchronously) data to the network management station 5002 as represented in 
Figure 50. 

Once the event is received, the management station classifies the event. If it is 
classified as a fault, it would then be passed to the fault management facility. 
Otherwise it is classified as a normal event and is logged for historical trending 
purposes. 

Event Processing 

Event processing manipulates the raw data obtained in the event/data generation 
layer into a more workable form. This layer performs functions such as event 
filtering, alert generation, event correlation, event collection and logging, and 
automated trouble ticket generation. Event processing routes the processed 
information on to either the presentation or management applications layers. Again 
it is important to consider the interface of the event processing component with the 
other components of the operational architecture. 

Event Management in a Net-Centric Environment 
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The MODEnc project has further defined Net-Centric Computing as the standards 
and considerations involved with Internet/Intranet/Extranet environments. 

When using the Internet-based net-centric model 5100, as shown, for example, in 
5 Figure 51, Internet standards such as TCP/IP, HTML and CGI are used to publish, 
interact, and transact with data/content on the public Internet 5102. Typically, a 
firewall 5104 is implemented to secure a service provider's internal resources 5106 
from the public Internet. A service provider locates Internet-based resources outside 
of the firewall and may provide controlled access from the web to internal 
10 information through mechanisms such as CGI 5108. Access to Internet resources 

may be through web browsers as depicted or via other mechanisms such as e-mail or 

3 ftp- 

4f When using the Intranet-based net-centric model 5200 as illustrated in Figure 52, 
jB Internet standards are used within the confines of a private network to implement 
f~ publish-, interact-, and transact-based applications. Browsers 5202 are used to 
O access HTML pages or other services located and controlled through internal web 
hj servers 5204. 

W When using the Extranet-based net-centric model 5300, as illustrated in Figure 53 
companies share computing resources by connecting over the Internet 5302 or 
Virtual Private Network (VPN). Each company typically shields its internal 
networks from the public Internet via firewalls 5304,5306 and provides controlled 
access through the firewalls to its partner's resources. 

25 

When performing the Event Management function in a net-centric environment, the 
following factors should be considered: 

• Lack of event management on the Internet 

• New events 

30 • Integration with other system management tools 

• Centralized event polling issues 



V 



m 
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• Intra-application events should be analyzed 

• SNMP difficulties in managing net-centric environments 

Lack of Event Management on the Internet [Internet, Extranet] 

5 

Net-centric service providers must consider that the Internet provides few event 
management services. Though a service provider's systems that reside outside the 
firewall may host SNMP and/or other event management agents, public Internet 
hosts currently may not provide event management data to a 3 rd party service 
10 provider. 

M3 New Events [Internet, Intranet, Extranet] 

jr New event metrics such as metrics related to an Internet connection may be required 
W to get an accurate overall picture of the net-centric environment health. The 
I emerging thin client architecture may also require new event categories. 

hj Integration with other System Management Tools [Internet, Intranet, Extranet] 
% Events generated by net-centric management tools may need to integrate with other 
W system management applications. 

Centralized Event Polling Issues [Internet, Intranet, 

Extranet] 

25 Management of a net-centric environment relies more heavily on remote sites 

generating and queuing their own event management information. The reason for 
this is if there is a network failure, a centralized polling approach to event 
management may not be able to assess the health of nodes behind a broken network 
link. Remote nodes must generation their own events, queue them in case of failure, 

30 and resends the queued events upon reestablishment of network connections 



Intra-application events should be analyzed 



[Internet, Intranet, Extranet] 
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Service Providers should monitor not only what pages/interfaces that users are 
accessing, but what they are doing within each page/interface to maximize the 
marketing value of usage data. This can also provide valuable input to application 
5 design teams in making application refinements. 

SNMP in a Net-Centric Environment [Internet, Intranet, Extranet] 

Since SNMP traps may have to traverse multiple networks, and MEBs may need to 
1 0 send management information to multiple stakeholders, managing events across net- 
centric environments can be difficult. An Internet Service Provider (ISP) may have 
to consider clever filtering to ensure that the right traps get to the right users. 

=p Presentation 

— = 

8 

^ The presentation component provides the interface between the manager(s) of the 

Q system and management data generated by the system. Data can be manipulated for 

i /J various forms of output. By integrating the operational architecture it is possible to 

O reduce the number of front-end interfaces required. Commonly, the presentation 

2| component uses a GUI front-end interface. This component is also responsible for 
real-time and historical report generation. 

Management Applications 

25 Management applications are those tools which are used to manage the system. 
Most of the MODE functions tie directly into this component. The management 
applications component ties in directly with the integration platform component as 
the management applications tools must comply with the standards set by the 
integration platform. Management applications receive data from the event/data 

30 generation, event processing, and repositories components and then send data to the 
presentation or repositories components. Management applications tools include 
capacity planning tools, performance management tools, license management tools, 
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remote management tools, systems monitoring tools, scheduling tools, help desk 
tools, etc.. Some Enterprise Management tools even poll the event/data generators 
for information but these options may impact network performance. Web Server 
management has been introduced as part of the management operations framework. 
5 As Corporate Internets and Extranets implement Web based software products to sell 
and advertise business services, corresponding administrative, security, event 
notification and performance requirements must be performed similarly for the 
companies web based system. The two critical path issues are security management 
and network management. 

10 

n Security Management 

gn Security Management controls both physical and logical security for a Net-Centric 
5 environment. Due to the nature of the environment, security may need to be 
1^ managed either centrally, remotely or through a combination of the two methods. 

Security Management also handles the logging of proper and illegal access, provides 
hi a way to audit security information, rectify security breaches and address 
^ unauthorized use of the system. 
2^ 

Network Mangement 

Network & Systems Management Planning is responsible for the planning activities 
involved in running the day-to-day operations and maintenance of the production 
25 systems 

Capacity Planning 
Performance Planning 

Repositories 

30 

Repositories contain all the management data generated or used during the 
management process. This includes historical data, capacity data, performance data, 
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problem knowledge bases, asset databases, solution sets, and management 
information bases (MIBs). The repositories component interacts with the 
management applications, integration platform, supporting infrastructure, and 
presentation components. Again it is important to make sure that the other 
components of the operational architecture are compatible with the database tools. 

Backup / Restore 
Archiving 

Integration Platform 

The integration platform provides a common platform for the operational 
architecture. At the lowest level this means deciding on common standards, 
interfaces, massage formats, and file logging forms to be used with all the 
management tools. Products like Tivoli Management Environment, require the use 
of a separate integration platform component into which the management 
applications are connected. Many third party vendors insist that they provide 
solutions which incorporate the event/data generation, event processing, repositories, 
and presentation components of the MAP operational architecture. It must be noted 
however that some of these total solution providers may sell a proprietary based 
solution, at best, and/or may include customized Application Programming 
Interfaces (API) or Software Development Kit capabilities in order to completely 
integrate your non-proprietary network. 

Lastly, some environments use a home grown integration platform. The choice of 
integration platforms depends upon its ability to integrate with the execution and 
development environments. 

Supporting Infrastructure 

The supporting infrastructure is the subset of operating systems, utilities, languages, 
and protocols used to support the management of the system. The supporting 




infrastructure is most often determined by the execution and development 
environments and the business applications on the system. It is necessary to ensure 
that the other components of the operational architecture are compatible with the 
existing supporting infrastructure. 

Managing Hardware 

Managing hardware is all hardware directly used to manage the environment. This 
includes all staging components. These components are devoted to systems 
management functions. Examples of managing hardware include management 
servers, management controllers, management consoles, probes, and sniffers. One 
significant component in the hardware monitoring arena is Firewall access control 
policy management. Firewalls are regularly used for network based security 
management. It is typically a system or group of systems that enforce access control 
between two or more networks and/or perform network data packet filtering. 
Usually packet filtering router hardware and application gateways are used to block 
unauthorized IP packets and enforce proxy defined user commands. 

Management Tool Selection 

It is important to note that there may be requirements which cannot be met by any 
tools. In this case, in-house development may be an alternative. This approach is 
likely to be more expensive, however, and more difficult to support the long term, 
and thus should usually be avoided if possible. Were possible, the tool with the best 
fit should be purchased, and customized to meet the necessary requirements. Some 
additional considerations are outlined below: 

Central vs. Distributed Control 
Platform Constraints 
Integration with other Functions 

Anticipated Volume of Data & Transaction Throughput 
Number of Users for the Tool 
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Level of Support Required 



INSTALLATION 



Oracle Database Installation 



Overview 
Assumptions 



10 This portion of the present description assumes: 

That the target hardware configuration for the database server meets the specified 
requirements for the software being installed. 

Embodiments mentioned within this portion of the present description may not be 
current as of the time of this reading. Care should be taken to ensure that the latest 
1 5 embodiments are used and that individual installation processes are reviewed to 
ensure that any changes are followed. 

Individuals performing this installation have experience in relational database 
concepts, tools, administration and performance tuning. 



20 Database Model 



Users and Schemas 



The following table provides a list of the user accounts, roles and schemas used 
25 during ReTA Phase 1 development. 



Account Name 


Description 


RETA ARCH 


Architecture Schema. This account contains various architecture- 
related objects (tables, sequences and procedures). 


RETA APPS 


Application Schema. This account contains application-related 
objects (tables, sequences and procedures). 
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Account Name 


Description 


IvClH /\UIT1ID 


A HminictrotAr ' 1 hi c t*/"\1 <=* r\rr\\ri qHtym m ct"T*Qti/"\T"i t^tty/iI^CT^c 
I 111 11 oil dlUI IvUlC. 1 Ilib 1U1C piUVlUCo aUlllllllolI allUli JJllvllCgCo 

and rights to the administrator account. Rights include full access to 

U1C tUdULCdUl C <1I1U cippilCdllUIl al/IlCllldo. 


Reta_User 


Application Role. This role provides rights and privileges to 

<\y)lJLl\s<\\,l\Jl.l dvL'U Ull lo . XVlc^llld Ull'lLlliC' 1U11 aV/t'^Od WJ 11 lt^ ClLFLsill/ClLll/ll 

schema and insert on selected architecture tables. 


Ret a Admin 


Administrator id. This account is used for architecture and 
application maintenance. 


RetaUser 


Application id. This account is used to gain access to application 
specific database objects during application execution. 



Architecture Tables 

The ReTA Phase 1 Architecture Frameworks require the tables and relationships 
illustrated in Figure 54. Among these tables are user identification tables 5400, user 
preference tables 5402, and event log tables 5404. 

Application Tables 

Figure 55 illustrates tables and relationships required for the ReTA Phase 1 
validation application. Among these are customer information tables 5500 and 
feedback tables 5502. 

Installation Process 
Oracle Configuration 

The following steps describe the process of installing and configuring a database for 
use during ReTA development and testing. 
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Step 


Step Description 


Notes 


1 


Install "Oracle 8 Enterprise Edition" (Version 8.0.3.0.0 for Windows 
NT) 

Run Setup on the installation CD. 

Choose the installation language, then select OK. 

Choose the Company name, and change the default install directory to 

C:\OracIe, then select OK. 

Select Yes when asked whether to have the installation program make 

changes to the PATH variable 

Choose to install Oracle 8 Enterprise Edition. 

Select where the Oracle portion of the present description should be 

installed. Ine detault is to leave it on tne LL). 


Though these 
steps describe 
the installation 
on a Windows 
NT platform, 
they are nearly 
identical to the 
installation 
process on the 
UNIX 

pidlliJi III. 


2 


Create a directory for the application database. 
Start the windows explorer 

oeiect tne directory wnere uracie is installed ^^.xuraciej men me 
subdirectory Database 

Create a new folder for the Database files. Ex. "C:\Oracle\ReTA" 




3 


At this point a full operating system backup should be made, and the 
backup set stored. In future, if the database server goes down, this 
backup may be used to quickly restore the server to a point where the 
Oracle Recovery Manager can take over and complete the backup. 




4 


Add registry keys for the database. The key locations are 
jxisjcj x LjKjk^j\a^ i\ i/w^ km. Kiy ml \ov/r i w /a.x\jL/ dtic \. 
Use the Start Menu to run the regedit application 
Browse to the above key. 

Right click on the entry ORACLE_SID and select Modify. 

Set the key value to RETA (or the SID of the Database if this has been 

modified. 

Create a new key, NLS JDATE JFORMAT, and set the value to "DD- 


This key 

iHpntifiPc tVif* 

active database 
to Oracle on 
startup. 
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Step 


Step Description 


Notes 




MM-YY HH24:MM:SS" (include the quotation marks) 




5 


Perform the initial database creation. 

Run the batch file Create ReTA Database.bat located in the 
DatabaseXCreateDB subdirectory of the Architecture directory of the 
supplied media. 

NOTE: The following batch files and database scripts may sometimes 
generate errors of the form "Table / View does not exist." This is 
because the scripts delete before trying to create objects - if the scripts 
are being run for the first time these objects may not exist and the 
errors may be generated. This is not a cause for concern. 


This batch file 
is expects 
RETARUN.sql 
and 

RETA 1 RUN. s 
ql to be located 
in the same 
directory. 


6 


Register your new databases with the TNS listener service to enable 
other computers on the network to see it. 

Open the file listener.ora located in the Net80\admin directory of the 
Oracle directory. 

Create entries identical to the ORCL entry at the end of the file, with 
the SIDs replaced by PROS, or the SID created in step 4. 
Note: copy the entire code block - i.e. four lines of code. 

The inserted code is the following : 
(pi_L>_jjrioU — Kei A ueveiopment uataoasej 

(GLOBALDBNAME = <Your computer name here>) 

(SED NAME = <Your database SID here>) ) 

Stop and restart the service Oracle TNS Listener 


This step 
enables 
Oracle8 Client 
communication 
with the data 
server. 


7 


Create local connections to the new database. 

Use the start menu to run the program Oracle for Win NT / Net8 Easy 
Config. 


This step 
provides access 
to the database 
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Step 


Step Description 


Notes 




Note: If one gets a Dr. Watson error on Java.exe, set the display to 256 


from 




colors. 


SQL*Plus s 




Select Add New Service, and supply a service name e.g. "RETA1" 


Oracle 




Select Bequeath (local database). 


Navigator or 




Select Next. 


other Oracle 




nnier me Qaiaud.se olu useu in uie udidudoc crcaiiun &L/iipi ^xviZ/ 1 r\. uy 


a H m i n i ^Ira t i v p 

dUlllllllOLlUll V w 




default) 


tools. 




Select Test Service (Username: system; Password: Manager) and 






when the test is successful push Done 






Select Next, then Finish. 





Application & Architecture Database Objects 

The following steps describe the process of creating user and schema accounts for 
use by the ReTA Phase 1 architecture and application services. 



Step 


Description 


Notes 


9 


Create the users and roles for the database. To run a database script, 


Connect as 




execute Oracle for WinNTXSQLPlus 8.0 from the start menu. A 


Username : 




script is executed by typing c @' followed by the full path and name of 


system ; 




the script. The scripts reside in the ReTA\Database\Create directory 


Password : 




of the supplied media. 


manager ; 




Run the script CreateRoles.sql 


Host String: 




Run the script CreateUsers.sql 


RETA1 - or 






the name of the 






service created 






in step 5 


10 


Create and populate the architecture objects within the RETAARCH 


This step 
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account. The following scripts are in the ReTAVDatabase directory of 


creates the 




the supplied media. 


architecture 




Connect as KH, 1 A AKLH, i.e. type connect 


framework 




reta_arch/reta_arch@retal at the command prompt or within 


tables expected 




^OT *P1n<: 

OyL/ riUo 


bv the ReTA 




Run the script CreateArcn I ables.sql 


.rnase i 




Run the script GrantArchRights.sql 


arcniieciure 




Run the script PopulateArcn 1 ables.sql 


services. 


11 


Create and populate the application objects within the RETA_APP 


This step 




account. The following scripts are m the ApplicationvDatabase 


creates the 




directory of the supplied media. 


tables 




Connect as RETA_APP, i.e. type connect reta_app/reta_app@retal 


necessary to 




at tVif* rrkininQTiH nTnnrnt r\t* \x/i tY. i n Q "^T^l 1 1 c 

<1L U1C UUlllll lcll l\A |JHJ111^JI UI W111111I ljV^J-j l^lllo 


nin thp RpTA 




Run the script CreateApp 1 ables.sql 


x'nase 1 




Run the script GrantAppRights.sql 


validation 




Run the script Populate AppTables.sql 


application. 


12 


Create synonyms and sequences for the both the architecture and 


This step 




application account objects. 


creates public 




Connect as the ReTA database administrator , i.e. type connect 


synonyms for 




RetaAdmin/RetaAdmiD@retal at the command prompt or within 


use by other 




SQL*Plus 


database 




lVU.il lilC C<tlC>rVI l^IlOj li« owll|Jl IU 1/lCdlC 11 1C 41 L/IlllCt^lUI c ayiiunyiii&. 


accounts 




Run the CreateAppSyn.sql scnpt to create the application synonyms. 






Run the scnpt CreateArchSeq.sql to create the sequences used by the 






event lo*? and the feedback annli cation 




13 


Modify the entries within the T AF USERNAME and 


Ensure that a 




T AF USERPREFERENCE tables with any new account information. 


entry exists for 






each developer 
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or tester. 


14 


It is recommended that at this point a full database export/backup be 


A clean 




performed. 


database 






backup after 






install ensures 






that the 






database may 






be recovered 






from day one. 



Technology Infrastructure Procurement List 

Purpose 

This portion outlines the minimum required hardware and software specifications for 
Phase 1 & 2 of the Resources eCommerce Technical Architecture (ReTA) initiative. 
It should be noted that the actual configurations, tools and configurations may very 
depending on application and client requirements. 

Environment Physical Components 

Development Environment 

Figure 56 illustrates the physical configuration of a possible ReTA-engagement 
development environment 5600. A developer workstation 5602 is connected to a 
file server 5604 and an architecture database 5606. 



Assembly/Product/Performance Testing Environments 



-264- 



Figure 57 illustrates the physical configuration of possible ReTA-based Assembly, 
Product and Performance testing environments 5700. A web and application server 
5702 is connected to a testing client 5704 and a database server 5706. 

Production Environment 

Because of the nature of netcentric applications, there are many possible physical 
configurations available for the production environment. The following illustrations 
provide views of two possible configurations. The main difference between the two 
is the separation of the web and application servers from one physical server into 
two separate physical boxes. 

Later phases may add additional components, such as search servers, transient data 
servers and batch servers. Figure 58 illustrates Separate Web and Application 
Servers 5800,5802 between an unsecured network 5804 and a secured network 5806. 
Figure 59 illustrates a Single Web and Application Server 5900 between an 
unsecured network 5902 and a secured network 5904. 

Development Environment Specifications 

It is assumed that during the development phases of the engagement, developers may 
perform much of the application build and test on their individual machines. As 
such, each developer may have their own web client, web server and app server 
running on their machine. A shared database(s) may provide development and 
testing relational database services needed in support of the architecture frameworks. 



Name 


Qty 


Hardware 


Software 


Developer 


1 per 


300 MHz (Pentium 


Microsoft Windows NT Workstation 


Workstations 


develop 


n) 


v4.0 (SP4) 




er 


128 MB RAM 


Microsoft Internet Explorer v4.01 






3 GB Hard Drive 


Netscape Communicator v4.5 






CD-ROM Drive 


Microsoft Peer Web Server v4.0 






17" Monitor 


Microsoft Transaction Server v2.0 








Microsoft Site Server Commerce Edition 
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Name 


Qty 


Hardware 


Software 








Vj.U 








Microsoft Visual Studio vo.O (SP2) 








Microsoft Office 97 








Oracle 8.0.4 Client 








Rational Rose 98i - Java Edition 








^optional ) 


File Server & 


1 per 


Any platform 


Example: 


Source Code 


project 


supporting standard 


Microsoft Windows NT Server 


Repository 




file server service 


OR 






provider. 


Novell Netware 






1 GB Disk Space 




/\rcn ireciu re 


1 per 


*\(\(\ A/TT-T'7 /Pentium 


iviicrosoii winuows in i ocrvcr vf .u 


Database 


project 


n) 


(SP4) 


Server 




128 MB RAM 


Microsoft SQL Server v7.0 






8 GB Hard Drive 


And/or 






CD-ROM Drive 


Oracle8 Enterprise Edition for NT v8.0.4 






15" Monitor 





Assembly, Product and Performance Testing Environment Specifications 



The following table provides basic requirements for the hardware/software needed 
for the Assembly, Product and Performance testing phases of a ReTA engagement. 
The testing environment(s) should be configured to match as closely to that of the 
production system as possible. 

Note that the specifications for each of these environments are the same. However, 
typical projects may want to establish separate environments to house each phase of 
testing to ensure contained and controlled results, and allow for parallel testing 
efforts. 

**Note that the recommendations on hardware attributes are greatly effected by 
functionality and complexity of the application, and may need to be analyzed against 
specific client needs. 
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Name 


Qty 


Hardware 


Software 


Testing Client 


1 per 


300 MHz (Pentium 


Microsoft Windows (NT or Windows 




tester 


n) 


95/98) 






IZo iVLtS KAivl 


Microsoft Internet Explorer v4.01 






3 GB Hard Drive 


AND/OR 






CD-ROM Drive 


Netscape Communicator v4.5 






17" Monitor 


Microsoft Office 97 (optional) 








Issue and Error Reporting/Tracking Tools 








(optional) 


Architecture 


1+ per 


//f"\ Af\(\ ~\JfXJ^ 

[4) 4UU JVLH.Z 


jviicrosoit w lnaows in i oerver v4.u ^o^r 4 ) 


Database 


environ 


Pentium II 


Microsoft SQL Server v7.0 


Server 


-ment 


2 GB RAM 


OR 






8 GB Hard Drive 


Oracle8 Enterprise Edition for NT v8.0.4 






CD-ROM 


Operational Utilities (optional) 






15" Monitor 




Web/Applicatio 


1+ per 


(4) 400 MHz 


Microsoft Windows NT Server v4.0 (SP4) 


n server 


environ 


rxnuum 11 


iviicroson iniernei mionnaiion oerver v^t.w 




-ment 


2 GB RAM 


Microsoft Transaction Server v2.0 






8 GB Hard Drive 


Microsoft Site Server Commerce Edition 






CD-ROM 


v3.0 (optional) 






15" Monitor 


Oracle 8.0.4 Client 








Operational Utilities <°P tional > 



Production Environment Specifications 

The following table provides basic requirements for the hardware/software needed 
for a possible Production environment of a ReTA engagement. 
** Note that the recommendations on hardware attributes are greatly effected by 
functionality and complexity of the application, and may need to be analyzed against 
specific client needs. 



-267- 



iName Qty Hardware Software 



Application 
User 


NA 


* Browser 
Dependent 


Microsoft Internet Explorer v4.01 
OR 

Netscape Communicator v4.5 


Architecture 

Database 

Server 


i+ per 

environ 

-ment 


Af\C\ A /f T T-t 

(4) 4UU JVLrlZ 

Pentium II 

2 GB RAM 

8 GB Hard Drive 

CD-ROM 

15" Monitor 


JVLicroson winaows in i oerver v4.u ^o.r'fj 

Microsoft SQL Server v7.0 

OR 

Oracle8 Enterprise Edition for NT v8.0.4 
Operational Utilities (optional) 


Web/Applicatio 
n Server 


1+ per 

environ 

-ment 


(4) 400 MHz 

Pentium II 

2 GB RAM 

8 GB Hard Drive 

CD-ROM 

15" Monitor 


Microsoft Windows NT Server v4.0 (SP4) 
iVLicrosoii internet miormation oerver v**.u 
Microsoft Transaction Server v2.0 
Microsoft Site Server Commerce Edition 
v3.0 (optional) 
Oracle 8.0.4 Client 
Operational Utilities (optional) 


Firewall 


1 -4- 


juu ivixiz gentium 

n) 

128 MB RAM 
2 GB Hard Drive 
CD-ROM Drive 
15" Monitor 


iviicroson winaows in i oerver vh-.lf ^o-th-j 
Firewall Software 
Operational Utilities (optional) 



Site Server Installation 



Overview 
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This portion of the present description describes installation procedures for 
Microsoft SiteServer 3.0 (Commerce Edition) and the relevant configuration 
required to create a ReTA eCommerce application. 

5 Site Server Installation 

The following portion of the description describes the pre-installation suggestions 
and the installation steps required for setup and configuring Site Server 3.0 
Commerce Edition. 

10 

Pre-installation Suggestions 

Do not install Site Server on a Backup Domain Controller. 
Do not install Exchange Server on a Site Server. Both products are resource 
1 5 intensive. 

Do not install Proxy Server on a Site Server. 

Do not install Site Server on a Clustered NT System (MSCS). One can install Site 
Server onto a Windows Load Balancing Service (WLBS). 
Remove Content Analyzer from Visual Studio. 
20 Only install Site Server on a NTFS Drive. 

Disable or Remove all Anti Virus software during entire install process. 

Do not change ANY setting in IIS before installing Site Server (On a clean/new 

install). 

Have at least one gig free of disk space. 
25 Verify that virtual memory is set to at least 128MB during the install process. 
Give your account administrative privileges on the local machine. 

Installation Order for Site Server (This installation used with Oracle database). 

30 Install Windows NT 4.0 Server or Windows NT Server 4.0 Enterprise Edition. 
Install Windows NT Service Pack 3. 

Install Internet Explorer 4.01 SP1 (choose standard install). 
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Install Windows NT Option Pack 
Install Index Server and the SMTP Server components. 
Make sure to configure MTS for local (not remote) administration. 
Install Visual Studio 97 or Visual Studio 6 <optional> - Do not install Visual Studio 
5 Analyzer Component. 

Create a System DSN to point to the database that may contain the sample tables. 
Install Site Server - Do not create new membership instances before installing 
Commerce Edition. 

Install Site Server Commerce Edition (do not overwrite data in database during 
10 commerce server setup). 

_ Select your DSN created earlier to create the sample database tables. 

O 

=3 Install Visual Studio 97 SP3 Or Visual Studio 6 SP2 < if Visual Studio is installed >. 

^ Install Windows Service Pack 4 (do not install MDAC if prompted, this may be done 

4^ in the next step). 

2 1 5 Install MDAC 2 .0 SP 1 . 

Add the MaxBlock registry setting for MDAC. 
O Install Site Server 3.0 SP2. 

^ Site Server Configuration Information Using ReTA Frameworks 

yrt 20 This portion of the description details the settings that must be in place to use Site 
Server's Personalization and Membership Services, along with instructions on how 
to setup a sample site to be used in conjunction with the ReTA Frameworks. 



Site Server Commerce Settings 

25 

After installing Site Server Commerce Edition v3.0 start the Site Server Admin 
Console and perform the following tasks: 



Expand the Personalization and Membership folder. 
30 Expand the computer name - i.e. "ZIMMERD3". 

Right click on the Commerce Membership Server (Membership Authentication) 

folder and select properties. 
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On the "Authentication Service" tab note the TCP Port number. 



^ 20 



Figure 60 illustrates a Commerce Membership Server [Membership Authentication] 
properties view 6000 which receives the computer name 6002, user name 6004, and 
5 password 6006. 

Right click on the Membership Directory Manager 6100 and select properties. 

Figure 61 illustrates a Membership Directory Manager Properties Dialog 6102. 
10 Make sure the Port number 6104 here matches the one from step # 4. 



Site Server Commerce Sample Site Setup Instructions 

To setup sample commerce site perform the following steps. 

Right click on Default Web Site 6200 in Internet Information Server 6202, select 
Task 6204- Membership Server Mapping 6206... 

Figure 62 is an illustration of a Membership Server Mapping Property. 

Select Intranet [Windows NT Authentication] Membership option. 



15 



Next create the sample site. 

Right click on the "Computer name" under the Commerce Host Administration 
25 folder (Refer to Figure 62 - Computer Name is "ZEMMERD3" 6208). 
Select New - Commerce Site Foundation. 

Create New Site Foundation Wizard 6300 appears. Figure 63 is an illustration of a 
Create New Site Foundation Wizard. Select to create site on "Site Server Commerce 
Membership Samples Web Site" option 6302. 

30 

Follow steps in the wizard. 
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After Site has been created, right click on Default Web Site in Internet Information 
Server, select Task - Membership Server Mapping... 

Change the Membership Server Mapping back to "Commerce Membership Server". 

5 Site Server Commerce Site Sample - Setup 

We may create the ReTA Application site under the "Member" directory in 
Windows Explorer (this may enable the use of the HTML Forms login that uses the 
Personalization and Membership Services to verify authentication to the site), this 
10 may be the site that was created through the Wizard. 

For example we created a site and the shortname was "cm" 6400. (Figure 64). 
Therefore our web application started under the "Member" directory 6402 of "cm". 

1 5 Figure 64 illustrates the web application 6404 being placed under the "Member" 
directory of "cm" in Windows Explorer. 

Place the Formslogin.asp, verifpwd.asp, and welcome_new.asp pages at the same 
level as the global. asa file. (These files one can copy from the Sample Site called 
20 "Trey Research"). 

Starting up ReTA Framework Components Properly 

We do not want to start the ReTA Framework components unless the user has 
25 authenticated properly. 

strUsername — Request("Username") 
strPassword = Request("Password") 

30 On Error Resume Next 

y = x.VerifyCredentials(strUsername, strPassword, strUrl) 
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5 



checkPassword = x.VerifyPassword(strUsername, strPassword) 

This line of code may verify that the user has authenticated with a proper username 
and password. 

On Error Resume Next 

ChkMemUserGUID = ChkUserObject.Get(' , GUID' , ) 



if Err.Number o 0 then 
10 IsError = True 

else 

IsError = False 

end if 

1 5 if checkPassword = 1 then 

REM 

'Create Event Handler that may be used in this function and in the 
Session_Stop function 
20 Set myEventCollection = 

Server.CreateObject("EventHandler.AFEventCollection n ) 

Set Session("AFEventCollection M )=myEventCollection 



25 



theCurrentPage = Request.ServerVariables( ,f SCRIPT_NAME") 

'Create the ReTA AFSession Component 
Set Session("AFSession") = 
Server. CreateObject(*'Session.AFSession") 



30 



Component 



'create ReTA AFUser object - either the UserSS or UserDB 
SiteServer=true 'change this to true for the SiteServer version 



-273- 



if (SiteServer=true) then 

Set user = Server.CreateObject( M UserSS.AFUserSS") 

else 

Set user = Server.CreateObjectC^UserDB.AFUserDB") 

5 end if 

theError=aiser.initO 

'Start the Session 

theError=Session( n AFSession , ').start(myEventCollection) 

10 

'Add the User component to the Session. 
theError=Session( n AFSession").setAFUser(user) 



'get The EventHandler Component from the Session and add it to the 
15 ASP session so that other pages can reference it. 
Set 

SessionC'AFEventHandler'O^SessionC'AFSession'^.getEventHandle^myEventColle 
ction) 

20 'Process any errors on this page. The return code is the severity of the 

Error 



theSeverity=Session("AFEventHandler").process(theCurrentPage,myEventC 
ollection) 

25 'if the Severity is greater than 1 then redirect to the Error Page 

if (theSeverity >1) then 

response.Redirect("/asp/ExamplePages/asp/frameworks/ErrorHandler.asp") 
end if 

30 

'test if we are starting the application at the correct point. If not it is 
probably because 
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'the Session timed-out and so display the timeout message 

if theCurrentPage = "/asp/verifpwd.asp" then 
'do nothing 

else 

response.Redirect( f 7asp/ExamplePages/timeout.htm M ) 

end if 



10 end if 



Here are some of the basic technologies utilized by Site Server Membership, 
including directory services, Lightweight Directory Access Protocol (LDAP), and 
15 Active Directory Service Interfaces (ADSI). A general knowledge of these 
technologies is important as one builds your Membership site. 



Directory Services and the Membership Directory 



20 A directory service is a database that stores organizational data and is highly 

optimized for database lookups (reads). Directory services provide an index of users 
and network resources. Site Server 3.0 contains Microsoft's most recent directory 
service, the Membership Directory. It is the central repository for user data, 
including member accounts, permissions, and site resources. All directory services 

25 use LDAP as their communicating protocol. In the future Microsoft Windows® 
2000 Server may implement the much-talked-about Active Directory, which may 
take the Membership Directory to the next level. The Active Directory may also be 
responsible for storing all the information needed for the Windows NT domain 
architecture. 

30 

Lightweight Directory Access Protocol 
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Lightweight Directory Access Protocol (LDAP) is the underlying protocol used by 
Site Server Membership to communicate with the Membership Directory. LDAP 
was designed to be the standard Internet protocol for accessing directory services. 
LDAP runs on TCP/IP networks and is independent of platform, allowing directory- 
5 based information to be shared across operating systems. Site Server Membership 
implements an LDAP service for reading and writing information to the Membership 
Directory database. 

Active Directory Service Interfaces 

10 

As stated previously, the Membership Directory must be accessed using the LDAP 
protocol. Rather than making raw LDAP calls to the Membership Directory, Site 
Server Membership uses Active Directory Service Interfaces, better known as ADSL 
ADSI provides a common standard interface to multiple directory services (through 
15 ADSI providers) and communicates with the directory services using LDAP. ADSI 
makes life easier by allowing the developer to write code to one API while working 
with multiple directory services. 

Active User Object 

20 

Site Server provides the Active User Object (AUO) as a single component that 
aggregates all of a user's attributes from multiple Active Directory Service (ADS) 
providers. The primary provider is always the Membership Directory. The AUO is a 
COM object called membership.userobjects. It uses ADSI to retrieve a user's 
25 information from the Membership Directory and greatly simplifies the code a 

developer writes by automatically binding to the current user's information in the 
Membership Directory. The binding occurs when the component is created, but 
requires that the Web site be mapped to a Membership Server and that the user is 
authenticated. 

30 

Membership Directory Authentication 
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Authentication Choices 

When one sets up a Membership Directory for a Web site, one must choose the type 
of authentication to be used. Membership may be set up to use Windows NT 
5 accounts (Windows NT Authentication) or accounts that reside solely in the 
Membership Directory database (Membership Authentication). Windows NT 
Authentication is most useful for intranet sites where one wish to leverage existing 
accounts and use the Windows NT Security Accounts Manager (SAM) for 
authentication. However, Membership Authentication is a good choice for 
10 Internet sites, especially sites in which the number of users may increase 

dramatically over time. As your user base grows, it is much easier to administer your 
accounts and privileges using Membership Authentication. 

Since Integrated Direct Channel (IDC) uses Membership Authentication for the 
1 5 purposes mentioned above, further detail into that authentication method is 
discussed below: 

Membership Server Mapping 

20 It is important to note that Membership Authentication maps Membership groups to 
proxy Windows NT group accounts to determine a member's security permissions. 
One still has the benefit of the strong security of Windows NT and can administer 
security permissions for a Membership group by assigning permissions (ACLs) to 
the proxy account. For every group in the Membership Directory, Membership 

25 creates a corresponding Windows NT group called Sitedirectorynamejgroupname, 
where directoryname is the name of the Membership Directory and groupname is 
the name of the Membership group. 

Membership Authentication Configuration Options 

30 



Under Membership Authentication, there are also several options for configuration. 
There are four Security Support Providers available: 1) Automatic Cookie 
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Authentication, 2) HTML Forms Authentication, 3) Distributed Password 
Authentication (DP A), and 4) Clear Text/Basic Authentication. At all four of these 
levels, there is an Allow Anonymous option, which allows unrecognized users to 
access the site as a generic account called I\JSRJ[server_name]. 

5 

1 . Automatic Cookie Authentication 
This method provides us with a quiet and discreet authentication method for both 
anonymous users and registered members. Cookie authentication issues two cookies 
- SITESERVER and MEMUSER - to store information on the user's computer. 

10 When this option is selected, the IS API (Internet Server Application Program 
Interface) filter (which was installed by the mapping of the Membership Server) 
parses the headers of the client and looks for the two cookies. There are three 
possibilities. If the cookies exist then the information found therein is used to 
authenticate and bind to a member. If the cookies are invalid then the member is 

1 5 redirected to an ASP page in the _mem_bin virtual directory. If the cookies don't 
exist then the IS API filter creates and binds to a new member in the Membership 
Directory, in the ou=AnonymousUsers container. Once bound to this user, two 
cookies are written to the browser. These two new cookies SITESERVER and 
MEMUSER may be used in future sessions to identify the member uniquely. 

20 

2. HTML Forms Authentication 

To provide a more secure (but equally simple) form of authentication, we can use 
HTML Forms Authentication. This method of authentication uses HTTP's POST 
method to send the user's credentials to an ASP page, which handles the submission. 

25 The ASP page then makes use of a special COM object - the VerifUsr object - to 
verify the user's credentials. HTML Forms Authentication also makes use of the 
IS API Membership Authentication filter. When a user makes a call to a page that 
uses HTML Forms Authentication, ISAPI traps that call and redirects to a special 
ASP page called FormsLogin.asp. This page is provided in the mem user virtual 

30 directory of the web application. FormsLogin.asp is nothing more than an asp page 
with form elements for user login name and password. Upon submission, the page 
redirects with the form elements to verifpwd.asp, which contains the script to verify 
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a user's credentials. If the user is authenticated, the user is taken to the page s/he 
was trying to access and issues a FormsAuth cookie in addition to the SITESERVER 
and MEMUSER cookies. 

5 3. Distributed Password Authentication (DP A) 

DPA works for Membership authentication in much the same way as 
Challenge/Response works for Windows NT Authentication. For DPA, users are 
authenticated against the Membership Directory (rather than the Windows NT SAM 
database). Moreover, since the username and password are never sent across the 
10 wire, DPA is very secure. Unfortunately, it's only possible for Windows Internet 
Explorer clients to use DPA where usernames and passwords are hashed with a 
challenge sent by the server. 

4. Clear Text / Basic Authentication 

1 5 When we select Basic Authentication, we authenticate any user that requests a 

resource against the credentials stored in the Membership Directory. We can specify 
extra information with the user, from which to authenticate users. But here lies a 
difference between Basic Authentication under Windows NT authentication and 
Basic Authentication under Membership Authentication: in the former case this 

20 extra information is in the form of a domain, and in the latter case the information 
represents sub-containers in the directory. The Clear Text/Basic Authentication 
method is supported by a number of applications, including Netscpape, and most 
clients should be able to use it. 

25 Other Considerations 

DPA and Clear Text / Basic Authentication can be selected simultaneously. In this 
case, the server may first attempt to issue a DPA authentication challenge. If (and 
only if) the client cannot interpret the challenge, the server may offer the Clear 
Text/Basic Authentication request. 

30 

EDC and Membership Authentication 
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The Integrated Direct team used HTML Forms Authentication with anonymous 
support under certain circumstances for a few reasons. First of all, this 
authentication method provides an html interface as opposed to a pop up dialog box. 
This gives the application a more consistent look and feel since the FormLogin.asp 
5 page is customizable with graphics and layout. HTML Forms Authentication is also 
has no compatibility issues that DPA or Clear Text / Basic Authentication methods 
may have. It is simply an html page, which posts form elements to another asp page, 
which contains authentication methods. Finally, HTML Forms Authentication 
issues one session essential cookie, the FormsAuth cookie. The use of one cookie 
10 makes user administration issues, such as session time and logout, simpler. 

DEVELOPERS WORKSTATION INSTALLATION PROCESS 

Description 

15 This portion of the description provides the steps necessary to configure a 

workstation for use doing application or architecture development on a ReTA 
engagement. 

Assumptions 

20 This portion of the present description assumes: 

That the target hardware configuration for the workstation meets the specified 
requirements for the software being installed. 

Embodiments mentioned within this portion of the present description may not 
25 current as of the time of this reading. Care should be taken to ensure that the latest 
embodiments are used and that individual installation processes are reviewed to 
ensure that any changes are followed. 

Individuals performing this installation have experience in Microsoft platforms and 
tools, and are familiar within web-based application development. 

30 

Development Environment 
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Figure 65 depicts a typical ReTA engagement development environment 6500, 
including a file server 6502, developer workstation 6504, a build and unit test DB 
server 6506, an assembly test web and application server 6508, and an assembly test 
DB server 6510. 

5 

Installation Process 

This is the script for the preparation of the run-time environment for the application 
and web server. It is applicable to a computer running Windows NT Workstation 
10 4.0. 



Install/Configure Web and Application Server Components 



Step 


Step Description 


Notes 


i 
i 


iiisidii w muuvY » 1 1 1 YvurKsidiiun v *t.u. 

Run install for Windows NT Workstation 4.0 from boot disks. 


11 Illcty UC 

necessary to 
reboot the 
computer after the 
installation. 


2 


Install Service Pack 4.0 for NT 4.0 

Run install for Service Pack 4.0 (available from the Microsoft 
Website). Ignore any warnings issued later in the installation 
process that are related to the use of Service Pack 4.0. 


It may be 
necessary to 
reboot the 
computer after the 
installation. 


3 


Install Internet Explorer 4.01 Service Pack 1. 

It is not important whether the desktop shell update is installed or 
not. This step also installs the Java virtual machine used by the 
application. It may be necessary to reboot the computer after the 
installation. 


This step installs 
the Java virtual 
machine used by 
the application. 
Reboot if 
prompted. 


4 


Set up the Web and Application Server. 

Install the NT Option pack from the supplied media. This may not 


Installs HS 4.0 
and MTS 2.0. 
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Step Step Description Notes 





1 "11 1 il * ill 1 J 1 . 1 

be possible unless the previous step has been completed correctly. 


Reboot when 




Choose to install the custom set-up of the option pack. 


prompted. 




Double click on the Personal Web Server component. 






Check the box for the Internet Service Manager component 






Click OK. 






uouuie v^uck ± r<tnadciiuu ocrver. 






Check box for Transaction Server Development. 






Accept default location for WWW Service install, Click Next 






Accept default for Transaction Server (should be Administration- 






> local). 






Application may begin to install. 





Install/Configure Database Connectivity 



Step 


Description 


Notes 


5 


Install Oracle 8 Client. 


Oracle 8 Client 




Install Oracle Client Software R 8.0 from the CD 


installed. 




Accept default home location. 






Choose Custom Installation. 






Select Oracle 8 Client Application User Products. 






Click Install. 






De-Select Oracle Objects for OLE. 






Click OK 






Click Exit when finished. 




6 


Configure Oracle Networking 

Use the Oracle Net8 Easy Config Utility to define a local service 
name. To perform this operation one may need to know the name 
of the Oracle instance (default is 'ORCL'), the hostname of the 
server that Oracle resides on, and the port that the Oracle database 
listener is on (default is 1521). 


Net8 provides the 
networking 
component of 
Oracle8. 



-282- 



Step 


Description 


Notes 




Refer to the help portion of the present description installed in 
step 5 for assistance. 




7 


Update MTS Settings for Oracle 8 client compatibility 
(Jpen Kh-LrliJJl 1 and witnin tne 
LOCAL_MACHINE\SOFTWARE key modify the 
MicrosoftYTransaction ServerVLocal ComputerXMy Computer 

entries: 

Change the OracleSqlLib to "sqllib80.dll" 
Change the OracleXaLib to "xa80.dll" 


Currently, MTS 
v2.0 installation 
is based on using 
Oracle 7.3 for 
Oracle 
connectivity. 


8 


Install Microsoft Data Access Components 

Kun install trom jn 1 oerver 4.u or 4.u qisk \ i^aution 9 ao not 

install NT Service Pack 4.0 at this time) 

Select Custom Install. 

De-select everything except for ODBC Components, OLE DB 
components, Microsoft's Remote Data Services and ODBC driver 
for Oracle databases. 


Microsoft ODBC 
for Oracle driver 
(MSORCL32.DL 
Lv 2.573.292700 
) installed 
Reboot if 
prompted. 


9 


Run MTS/Oracle Configuration Test Utility 

Copy the Oracle 8.0 version ofTestOraclexaConfig.exe (from the 

Tools project within VSS) to your C:\Program FilesVMts folder. 

Copy over the existing .exe (version 7.3 compatible). 

Run the TestOraclexaConfig.exe from the command line; i.e. 

TestOraclexaConfig.exe — U<username> — P<password> — S<Net8 

Service> 

Thy Tfcf f , lt"5if»li*YSitf" ,, nii - fiCF pvp ¥ TWpf siT Tspi* — ¥*Rp#5iTT<:i*i" 

JLsA. 1. C51V/I atlCAaV/Ullllg>vAC — \J IVClil U5C1 K FVC laUSCI — 

SRetal 


Use this test to 
ensure your oracle 
client connection 
is transactional. 

ivi i o installs 
Oracle 7.3 
compatible utility 

\w/ Hpfaiilt 

U V UvlaUll. 


10 


Create Architecture and Application DSN's (Data Source Names). 
Run the 32Bit Administrator in the Control Panel. Make sure 


This process sets 
up an ODBC 
connection from 
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Step 


Description 


Notes 




that the tab for System DSN is selected. 

oeiect Aaa, men iviicrosoit uujjl ior uracie 

The Data Source Name is AFUser, and the Server "retal" for 

the above example) 

Repeat the above two steps to add DSN's for the data sources 
AFPersistence, AFEvent, AFSession and AFOrder 


the developers' 
niacnine 10 ine 
Database Server. 


1 1 
1 1 


i est me .l/oin s aeiinea 

Test the connections established above using the 32 Bit ODBC 
Test utility in the Oracle for NT folder off the Start menu. 
Select Connect, then Machine Data Sources, then one of the 
connections established above. 




Configure Java Runtime Components 


Step 


Description 


Notes 


13 


Apply Software Updates 

Install the updated latest Java Virtual Machine (Downloaded from 
Microsoft) 


Reboot when 
prompted. 


14 


Update the Runtime Java Classes 

Using the WinntJava.Zip file provided within the Tools project 
of SourceSafe: 

Extract all files (use folder names) to C:\WinNT\Java. 




15 


Create System Environment Variables 
Define the following Environment Variable; 
CLASSPATH 

C:\ReT A\Architecture;C:\ReTA\Application;C:\winnt\java\classes 
;C:\winnt\java\packages;c:\winnt\java\trustlib 


These variables 
are used by the 
Java Virtual 
Machine to find 
Java runtime 
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classes and by the 




INCLUDE 


development 




INCLUDE; add 


tools for 




G\ReTA\Architecture;G\ReTA\Application;G\Program 


application and 




Files \Microsoft Visual Studio\VC98\Include;c:\Program 


architecture 




FilesYMTS 


builds. 




PATH 






- r A i rl; aau kj: \orant \Din;^; \i rogram .riles YMts;^ \i rogram 






Files\Microsoft Visual Studio\Cbmmon\Tools\;G\Program 






Files\Microsoft Visual Studio\VC98\bin;G\Program 






FilesXMicrasoft Visual Studio\VJ98 





Install and Configure Development Software 



Step 


Step Description 


Notes 


16 


Install Microsoft Visual J + + 


Restart if 






prompted. 




If install detects an out of date version of IE 4.0 then accept the 






version offered by Visual J++ 6.0. 






Reboot Computer, leave CD in drive. 






Start install for Visual J++ v 6.0, select Install Visual J++ 6.0 






option. 






Select Custom install: 






Click Data Access, click Change Option button, click Microsoft 






ODBC Drivers and click Change Option button, - De-Select 






Microsoft SQL Server ODBC Driver and Microsoft Oracle ODBC 






Driver, Click OK twice, Click Continue button. 




17 


Install Microsoft Visual Studio 6.0 Components. 


Restart if 






prompted. 
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Step 


Step Description 


Notes 




Select Custom install: 

De-select everything except for Microsoft Visual SourceSafe 6.0 and 
Microsoft Visual C++ 6.0. . Ignore warning message when 
deselecting the Data Access check box. 
Click on Microsoft Visual C+ + 6.0 
Qick Change Option. 

De-select everything except tor VC++ Build Tools. 
Qick OK button. 
Qick Continue. 

Qick OK on register environment variables. 

Qick YES on Visual SourceSafe Database Format dialog. 




18 


Apply Software Updates 

In the event that updates are available for either Visual J++ or 
Visual C++, apply them now. 




19 


Install Service Pack 4.0 for NT 
Run install for Service Pack 4.0. 




20 


Configure Web Server 

Start the Internet Service Manager 

A J J * ^ 1 J* J 1 1* 

Add a virtual directory where the application may start. 

On the virtual directory enable Server Side ASP script debugging 

and Qient Side script debugging. 

On the virtual directory, set directory security for Basic 

AU LI lC 1 1 LLC <A LIU 1 1 Ulliy. 




21 


Configure encrypted database access information 

Open Command prompt in G\ReTA\Architecture 
Type 'jview Session.DatabaseUser.class' 

When Prompted for the Architecture user id and password enter 


This step creates 
an encrypted file 
located at the C:\ 
that contains the 
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Step 


Step Description 


Notes 




(Userid: RetaUser, Password: RetaUser) 


database 




When Prompted for the Application user id and password enter. 


connectivity 




(Userid: RetaUser, Password: RetaUser) 


information. 



WEB & APPLICATION SERVER ENVIRONMENT 

5 Overview 
Description 

This portion of the description provides the steps necessary to configure a Microsoft 
Internet Information Server (IIS) web server and an application using Microsoft 
10 Transaction Server for use on a ReTA engagement. 

Assumptions 

This portion of the present description assumes: 
15 That the target hardware configuration for both the web and application server meets 
the specified requirements for the software being installed. 

Embodiments mentioned within this portion of the present description may not be 
current as of the time of this reading. Care should be taken to ensure that the latest 
20 embodiments are used and that individual installation processes are reviewed to 
ensure that any changes are followed. 

Individuals performing this installation have experience in Microsoft platforms and 
tools, and are familiar within web-based application development. 

25 Physical Configuration 
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Figure 66 illustrates the development environment configuration for a ReTA Phase 1 
engagement. A developer workstation 6600, a database server 6602, and a web and 
application server 6604 are connected together. 

5 Installation Process 

This is the script for the preparation of the run-time environment for the application 
and web server. It is applicable to a computer running Windows NT Server 4.0 
Enterprise Edition. 

10 



Install/Configure Web and Application Server Components 



Step 


Step Description 


Notes 


1 


Install Windows NT Server v 4.0 Enterprise Edition. 

Run install for Windows NT Server 4.0 from boot disks. 


It may be 
necessary to 
reboot the 
computer after the 
installation. 


2 


Install Service Pack 4.0 for Windows NT 4.0 

Run install for Service Pack 4.0 (available from the Microsoft 
Website). Ignore any warning messages during the later steps of 
the installation process related to the use of the Service Pack. 


It may be 
necessary to 
reboot the 
computer after the 
installation. 


3 


Install Internet Explorer 4.01 Service Pack 1. 

It is not important whether the desktop shell update is installed or 
not. This step also installs the Java virtual machine used by the 
application. It may be necessary to reboot the computer after the 
installation. 


This step installs 
the Java virtual 
machine used by 
the application. 
Reboot if 
prompted. 


4 


Set up the Web and Application Server. 

Install the NT Option pack from the supplied media. This may not 
be possible unless the previous step has been completed correctly. 


Installs HS 4.0 
and MTS 2.0. 
Reboot when 
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Step 


Step Description 


Notes 




Choose to install the custom set-up of the option pack. 


prompted. 




Double click on the Personal Web Server component. 






Check the box for the Internet Service Manager component 






Click OK. 






i^ouoie i^iick i ransaccion oerver. 






Check box for Transaction Server Development. 






Accept default location for WWW Service install, Click Next 






Accept default for Transaction Server (should be Administration- 






> local). 






Application may begin to install. 





Install/Configure Database Connectivity 



Step 


Description 


Notes 


5 


Install Oracle 8 Client. 


Oracle 8 Client 




Install Oracle Client Software R 8.0 from the CD 


installed. 




Accept default home location. 






Choose Custom Installation. 






Select Oracle 8 Client Application User Products. 






Click Install. 






De-Select Oracle Objects for OLE. 






Click OK 






Click Exit when finished. 




6 


Configure Oracle Networking 

Use the Oracle Net8 Easy Config Utility to define a local service 
name. To perform this operation one may need to know the name 
of the Oracle instance (default is 'ORCL'), the hostname of the 
server that Oracle resides on, and the port that the Oracle database 
listener is on (default is 1521). 


Net8 provides the 
networking 
component of 
Oracle8. 
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Step 


Description 


Notes 




Refer to the help portion of the present description installed in 
step 5 for assistance. 




7 


Update MTS Settings for Oracle 8 client compatibility 

Open K±iLriiL)l 1 and witnin trie 

LOCAL JVIACHINE\SOFTW ARE key modify the 

MicrosoftYTransaction ServerXLocal Computer\My Computer 

entries: 

Change the OracleSqlLib to "sqllib80.dll" 
Change the OracleXaLib to "xa80.dll" 


Currently, MTS 
v2.0 installation 
is based on using 
Oracle 7.3 for 
Oracle 
connectivity. 


8 


Install Microsoft Data Access Components 

Kun install rrom JN l server 4.U or 4.u disK \L,autwn, ao not 

install NT Service Pack 4.0 at this time) 

Select Custom Install. 

De-select everything except for ODBC Components, OLE DB 
components, Microsoft Remote Data Services and ODBC driver 
for Oracle databases. 


Microsoft ODBC 
for Oracle driver 
(MSORCL32.DL 
Lv 2.573.292700 
) installed 
Reboot if 
prompted. 


9 


Run MTS/Oracle Configuration Test Utility 

Copy the Oracle 8.0 version ofTestOraclexaConfig.exe (from the 

Tools project within VSS) to your C:\Program FilesVMts folder. 

Copy over the existing .exe (version 7.3 compatible). 

Run the TestOraclexaConfig.exe from the command line; i.e. 

TestOraclexaConfig.exe — U<username> — P<password> — S<Net8 

Service> 

"Py TTpcttf~^f siplpYiitf^nnfio pyp TTW pf"j*TT«pt* PUptaTT^pr 

JLfA. 1 CMV/l alrlCAaV/UUllgtCAC — UlVClaUSCI — X IvClaUavl — 

SRetal 


Use this test to 
ensure your oracle 
client connection 
is transactional. 

ivi i o installs 
Oracle 7.3 
compatible utility 


10 


Create Architecture and Application DSN's (Data Source Names). 
Run the 32Bit Administrator in the Control Panel. Make sure 


This process sets 
up an ODBC 
connection from 
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Step 


Description 


Notes 




that the tab for System DSN is selected. 

oeiect ago, men iviicrosoii ul»dl ior uracie 

The Data Source Name is AFUser, and the Server "retal" for 

the above example) 

Repeat the above two steps to add DSN's for the data sources 
AFPersistence, AFEvent, AFSession and AFOrder 


the developers' 
mdcnine to inc 
Database Server. 


1 1 
1 1 


Toot +V»<=» "HCXT'c A a. Fa r\ a A 

l est me jljojn s oenneQ 

Test the connections established above using the 32 Bit ODBC 
Test utility in the Oracle for NT folder off the Start menu. 
Select Connect, then Machine Data Sources, then one of the 
connections established above. 




Configure Java Runtime Components 


Step 


Description 


Notes 


13 


Apply Software Updates 

Install the updated latest Java Virtual Machine (Downloaded from 
Microsoft) 


Reboot when 
prompted. 


14 


Update the Runtime Java Classes 

Using the WinntJava.Zip file provided within the Tools project of 
SourceSafe: 

Extract all files (use folder names) to C:\WinNT\Java. 




15 


Create System Environment Variables 
Define the following Environment Variable; 
CLASSPATH 

C:\ReT A\Architecture;C:\ReTA\Application;C:\winnt\java\classes 
;C:\winnt\java\packages;c:\winnt\java\trustlib 


This variable is 
used by the Java 
Virtual Machine 
to find Java 
runtime classes. 
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IF using this machine for development, Add the following: 






INCLUDE 






INCLUDE; add 


These variables 




G\ReTA\Architectxirc;C\ReTA\AppUcation;G\Program 


are used by the 




Files\Microsoft Visual Studio\VC98\Include;c:\Program 


development 




FUesYMTS 


tools for 






application and 




PATH 


architecture 




- PATH; add C*\orant\bin;G\Program Files\Mts;C\Program 


builds. 




rues \iviicrosorc v lsuai oiucuo \ vjO ninion \ loois \,v->. \i rogra.ni 






Files \Microsoft Visual Smdio\VC98\bin;G\Program 






Files\Microsoft Visual Studio\VJ98 




16 


Install Service Pack 4.0 for NT 


Reboot when 




Run install for Service Pack 4.0. 


prompted 



IF using this machine for development: Install and Configure Development 
Software 



Step 


Step Description 


Notes 


16 


Install Microsoft Visual J + + 


Restart if 






prompted. 




If install detects an out of date version of IE 4.0 then accept the 






version offered by Visual J++ 6.0. 






Reboot Computer, leave CD in drive. 






Start install for Visual J++ v 6.0, select Install Visual J ++ 6.0 






option. 





-292- 



Step 


Step Description 


Notes 




Select Custom install: 

Click Data Access, click Change Option button, click Microsoft 
ODBC Drivers and click Change Option button, - De-Select 
Microsoft SQL Server ODBC Driver and Microsoft Oracle ODBC 
Driver, Click OK twice, Click Continue button. 




17 


Install Microsoft Visual Studio 6.0 Components. 

Select Custom install: 

De-select everything except for Microsoft Visual SourceSafe 6.0 and 
Microsoft Visual C+ + 6.0. Ignore warning message when 
deselecting the Data Access check box. 
Click on Microsoft Visual C++ 6.0 
Click Change Option. 

De-select everything except tor VC++ Build Tools. 
Click OK button. 
Click Continue. 

Click OK on register environment variables. 

Click YES on Visual SourceSafe Database Format dialog. 


Restart if 
prompted. 


18 


Apply Software Updates 

In the event that updates are available for either Visual J++ or 
Visual C++, apply them now. 




19 


Install Service Pack 4.0 for NT 
Run install for Service Pack 4.0. 




20 


Configure Web Server 

Start the Internet Service Manager 

Add a virtual directory where the application may start. 

On the virtual directory enable Server Side ASP script debugging 
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Step 


Step Description 


Notes 




and Client Side script debugging. 






On the virtual directory, set directory security for Basic 






Authentication only. 




21 


Configure encrypted database access information 

Open Command prompt in G\ReTA\Architecture 
lype jviewbession.DatabaseUser.class 

When Prompted for the Architecture user id and password enter. 
(Userid: RetaUser, Password: RetaUser) 

When Prompted for the Application user id and password enter 
(Userid: RetaUser, Password: RetaUser) 


This step creates 
an encrypted file 
located at the C:\ 
that contains the 
database 
connectivity 
information. 



STANDARDS 

5 Objectives 
Purpose 

The purpose of this guide is to provide a reasonable set of coding standards and 
10 recommendations for producing structured, reliable and maintainable portion of the 
present descriptions in the HyperText Markup Language (HTML) on the World 
Wide Web. 

This guide is intended for programmers who are at least familiar with the basics of 
15 the HTML. Accordingly, no attempt is made to explain HTML concepts such as 
frames and tables. 
Scope 
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These standards are intended to be independent of any particular hardware, operating 
system, or development tool. Due to the nature of the Internet, platform independent 
code is imperative. 

5 This guide covers standards for HTML 2.0 and does not cover standards for HTML 
3.2. This embodiment can be assumed to be "safe" for all Web browsers. However, 
HTML 3.0 and 3.0+ offer an extensive array of non-standard elements which 
enhances the presentation of a Web page. This guide may include tables and frames 
which are not fully supported by all browsers. Thus, when implementing tables or 
10 frames, it is important to consider your target audience and the type of browsers they 
may be using to surf the Internet. 

There are a variety of tools to aid the authoring process of HTML. A HTML editing 
tool like WebEdit or a HTML template like Internet Assistant may not be consistent 
with our standards and guidelines. Projects using these HTML editors and converters 
15 are subject to the proprietary standards of their respective software applications. 
Convention 

In this guide, standards are presented as follows: 
* Text for rule or standard here. 
20 The statement of one or more standards is usually followed by a discussion of the 
standard(s). Such a discussion may include justifications for using the particular 
rule, common alternatives, other supplementary information, or even situations 
where the standard may not apply. 

25 

Program Organization 

Source Code 

30 * Organize source code as follows: 
file comment block 
<HTML> 
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<HEAD> 
<TITLE> 
</TITLE> 
</HEAD> 
5 <BODY> 

insert body text 

</BODY> 

</HTML> 

10 Defining a standard source file layout makes it easier to understand and maintain 
code written by other programmers. 

File Names 

15 HTML files adhere to the same naming and directory standards set forth by the 

Internet Center of Excellence (ICE). For more information, refer to the ICE portion 
of the present description on file naming and directory standards. 

Programming Styles 

20 

HTML Tags 

* All HTML tags and attributes should be capitalized. 

HTML is not case sensitive, however, to preserve readability, it is important to 

adhere to uppercase lettering for HTML tags. 

25 However, some HTML editors, such as Microsoft FrontPage, generate lower-case 
HTML tages. Since more HTML editing may probably be done through similar 
tools, it does not make sense to have to go back through the code and make any 
changes. For this situation, simply adopt the format that your HTML tool generates, 
and make it consistent throughout your project. 

30 * All open tags must be terminated by an end tag. 

Excluding tags such as <LI>, <HR>, <BR>, <1MG>, <META>, <BASE> and <P>, 
it is important to close a HTML tag with a </(tag name)>. For example, an open 
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HTML tag is <HTML> and a closed HTML tag is </HTML>. Failure to close a 
HTML tag may cause undefined behavior with the appearance of the HTML page. 

* Do not skip levels of headings. 

Headings should be not more than one level below the preceding heading level. For 
5 example, <H3> should not follow <H1>. 

* Use underline for hypertext links only. 

Adhere to this standard to eliminate any confusion between a hypertext link and a 
text underlined for emphasis. To emphasize text, use the following tabs: <EM> for 
emphasis in italics, <STRONG> for text emphasis, <B> for bold and <I> for italics. 

10 * Employ the logical styles rather than physical styles. 

Not all browsers are capable of displaying italics <I> or the boldface <B> tag. 
Physical styles indicate the specific appearance of individual words or sentences and 
include such tags as <B> for bold text, <I> for italic text, and <TT> typewriter text, 
e.g., fixed-width font. The following is a list of logical styles tags: 

15 <CITE> for citation (e.g., HTML Coding Standards). Typically displayed in italics. 
<CODE> for computer code (e.g., Enter <stdio.h> header file). Typically displayed 
in a fixed-width font. 

<DFN> for definition (e.g., Guru means god-like). Typically displayed in italics. 
<EM> for emphasis (e.g., It is advisable that one uses this than typing italics within 
20 a tag). Typically displayed in italics. 

<KBD> for user keyboard entry (e.g., Enter passwd). Typically displayed in a fixed- 
width font. 

<SAMP> for a sequence of literal characters (e.g., Segmentation fault: Core 
dumped). Typically displayed in a fixed-width font. 
25 <STRONG> for strong emphasis (e.g., NOTE: This is a reminder). Typically 
displayed in bold. 

<VAR> for a variable (e.g., rm filename deletes the file). Typically displayed in 
italics. 

* The use of <P> should be avoided directly before any other element which 
30 already implies a paragraph break. 

The <P> element should not be placed before the headings, HR, ADDRESS, 
BLOCKQUOTE, or PRE. 
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It should also not be placed immediately before a list element of any stripe. That is, a 
<P> should not be used to mark the end-of-text for <LI>, <DT> or <DD>. These 
elements already imply paragraph breaks. 

5 * Investigate the possibility for using server-side includes for repeated blocks 
of HTML, such as footers and headers. 

The server-side include tag allows one to keep one copy of a footer or header. 
Updating this one copy may update all portion of the present descriptions that 
reference it. 

10 

Investigate the Client's use of the <META> tag, which is used to help with searches 
and portion of the present description information. 

The <META> tag provides a way to store information about the portion of the 
15 present description that is not available elsewhere in the portion of the present 
description. For example, the META tag can contain catalog, author, or index 
information that various search engines can use. 
An example might be: 
<HEAD> 

20 <META NAME="keywords" CONTENT="HTML portion of the present 
description reference Netscape"> 
</HEAD> 

This portion of the present description is indexed under the terms "HTML", "portion 

of the present description", "reference", and "Netscape". 
25 HTML Tag Parameters 

* Include HEIGHT and WIDTH attributes in all IMG tags. 

Adhering to this standard may eliminate the problem when using JavaScript code in 

HTML portion of the present descriptions with IMG tags. Without the HEIGHT and 

WIDTH parameters in IMG tags, JavaScript event handlers are ignored on 
30 subsequent form elements and also images are not displayed on screen. As good 

practice, it is recommended to include all parameters in their appropriate HTML 

tags. 
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* Include alternate text for images. 

Some Web browsers cannot display images and some Web users may not want to 
use image loading even if their software can display images because they are have a 
slow connection. For these browsers and users, the ALT attribute specifies the text 
5 to be displayed instead of the image. For example, <EMG SRC="aclogo.gif 1 

ALT-' Andersen Consulting logo">. If a Web browser cannot display aclogo.gif or 
a Web user wishes not to view the logo, the text "Company Logo" may be displayed 
to screen instead. 

* Indicate a specific font size rather than incrementing it with the ±. 

10 Be careful when using the ± in the SIZE attribute in the FONT tags. Some Web 
users re-configure the font sizes in their Web browsers and the consequences of 
using the ± may have an adverse effect on the text. 

* Always have <NO FRAMES> tags following the <FRAMESET> tag. 
Not all Web browsers are "frame-capable." Those "frame-capable" browsers may 

1 5 see the frames layout and others may view an alternate or a normal page without 
frames. The code for the page without frames is bounded by the open and closed 
NO FRAMES tag set and includes the open and closed BODY tags and all code 
therein. For example: 



20 <FRAMESET COLS="80%,20%"> 

<FRAME NAME="columnl" SCROLLING="no" NORESIZE 

SRC="coll.html"> 

<FRAME NAME="column2 M SCROLLING— f yes" NORESIZE 

SRC="col2.html"> 
25 </FRAMESET> 

<NO FRAMES> 

<BODY> 

body text 

</BODY> 
30 </NO FRAMES> 
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Path Names 

In general, use relative links when referencing internal files. 
There are exceptions to this standard and a uniform scheme should be determined 
5 prior to HTML development. 

In general, it is easier to move a group of portion of the present descriptions to 
another location because the relative path names may still be valid. Also, relative 
paths are more efficient to connect to the server. An example of a relative path to a 
10 file "california.html" located in the subdirectory "unitedstates" would be: 
<A HREF= ,, unitedstates/califomia.htmr , >California</A>. 

Absolute pathnames link to portion of the present descriptions that are not directly 
related and require the complete Uniform Resource Locator (URL) of the file. 
An example of an absolute path to a file "mteverest.html" in the subdirectory "nepal" 
15 on another server "Hiking Expeditions" would be: 

<A HR£F="www.hiking.com/nepal/mteverest.htmr'>Trekking on Mt.Everest</A>. 

When making a directory reference, it is important to make sure to have a trailing 
slash on the URL. 

20 For example, <A HREF= "http://www.acxom/news/"x/A> is correct, while <A 
HREF= "http://www.ac.com/news"x/A> is not. 

Formatting 

25 General 

Consistent use of a suitable formatting style makes HTML portion of the present 
descriptions much easier to read, comprehend, and maintain. Choosing a reasonable 
style and using it consistently is more important than the details of the style itself. 

30 

Screen Resolution 
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* All HTML files should be designed to fit on a 640x480 screen. 

This standard is set forth for consideration of most display monitors, especially 

laptop users who have screen resolution of 640x480 only. 

5 * Indent HTML tags when creating tables, frames, and lists. 

Consistent use of a suitable formatting style makes programs much easier to read, 
comprehend and maintain. An example of this is as follows: 

<TABLE BORDER=0 CELLSPACING=0 CELLPADDING=0> 
1 0 <TH>Sample Heading</TH> 
<TR> 

<TD>Row 1 Column 1</TD> 
<TD>Row 1 Column 2</TD> 
<TD>Row 1 Column 3</TD> 
15 </TR> 
<TR> 

<TD>Row 2 Column 1</TD> 
<TD>Row 2 Column 2</TD> 
<TD>Row 2 Column 3</TD> 
20 </TR> 
</TABLE> 

An example of formatting an unnumbered list is as follows: 

25 <UL TYPE="square"> 
<LI>Alligator 
<LI>Bear 
<LI>Cat 

<UL> 

30 <LI>Siamese Cats 

<LI>Persian Cats 
<LI>Tabby Cats 
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</UL> 
<LI>Deer 

</UL> 

5 As one may notice, no closing LI tag is needed. The same format above would apply 
for numbered, i.e., <OL> and definition lists, i.e., <DL>. 

Portion of the present description (comments) 

10 General 

Include comments in code as it is being written and update them accordingly. 
Remember that bad comments are worse than no comments at all! 
Comments are also convenient for commenting out several adjacent lines of code for 
15 debugging purposes. 

Inline Comments 

* Insert portion of the present description information at the top of each HTML 
20 file in comment tags. 

All HTML files should begin with the following information: 
<!-- Portion of the present description name: — > 

<!-- Description: --> 
<!-- Author: --> 
25 <!-- Date created: -> 
<!-- Last modified on: — > 
<!— Any applicable copyright notices — > 

* Comments should begin with <!-- and closed with — >. 

* Include comments in places where the code is unclear and/or nonportable. 
30 * Place comments above the appropriate tag/link. 

* Indent inline block comments to the same level as the code they describe. 

* Do not include comments for actions that can be stated in the language itself. 
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Good inline comments are brief and to the point; the author should assume that the 
reader is reasonably competent. 

* Date Created and Date Modifications should be in the format of "January 10, 
1996", not "01/10/96". 

5 This is because, for some audiences, especially those from Europe, 

"01/10/96" means "October 01, 1996". 

* Portion of the present description modifications in comment tags. 

If we are maintaining portion of the present descriptions on a long-term basis, not 
just for development, the following standard should be used to maintain HTML 
1 0 source. 

Add notation to portion of the present description header. 

Initialize and date the beginning and ending of modification if multiple lines. 

Example of this is: 

<!-- January 10, 1996 STP: Begin modified table entries --> 
15 table... 

<!— January 10, 1996 STP: end of modification --> 
If single line modification, only mark line above. 

Common Mistakes 

20 

This portion of the description lists a few of the most common mistakes made by 
HTML designers, experienced as well as beginners. They are as follows: 
Remember to close HTML tags. 

Remember to close all attribute tags with a quote. For example, linking to Andersen 
25 Consulting's Web site may look like: <A HREF- 'httpy/www.ac.com"^ However, 
people may inadvertently leave off the close quote and instead type: <A 
HREF= n http://www.ac.com>. 

Be sure all HTML files contain the main opening and closing tags in their respective 
order as follows: 
30 <HTML> 

<HEAD> 

<TITLE> 
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</TITLE> 
</HEAD> 
<BODY> 
</BODY> 
5 </HTML> 

Test all hyperlinks after completion of a HTML file. 

A character reference and an entity reference are ways to represent information that 
might otherwise be interpreted as a markup tag. 
For example: 
10 < represents < symbol; 
> represents > symbol; 
" represents " mark; 
& represents & symbol. 

The most common errors in the use of entity references are leaving off the trailing 
15 semicolon and adding unnecessary spaces before and/or after the entity/character 
reference. 

Java Programming Standard 

20 Introduction 

This portion of the present description describes the Programming Standard for Java 
in the Telebank project. It covers typical programming standard material, including 
the following: 
25 Program organization 
Naming standards 
Code layout 
Comments 

In addition, it covers the following material: 
30 Coding priorities 
Programming style 
Error handling 
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Debugging and testing 

The purpose of this portion of the present description is to help ensure a uniformly 
5 high source code quality. The rules and guiding principles have been chosen to 

support this goal. In cases with more than one acceptable alternative, one alternative 
has been chosen (more or less arbitrarily) rather than leaving it up to the individual 
programmer. The purpose of this is to ensure consistency in the source code. 
Note: Some of the rules are beneficial only if applied consistently. Apply them! 

10 

Coding Priorities 

This portion of the description defines coding (and, to some extent, design) priorities 
on the various platforms. The first table defines the meaning of each priority item; 

1 5 the second table specifies their ranking on the three platforms. 

Use these tables as a guide for resolving design and implementation issues. 
In some cases, coding priorities are clearly opposed to one another. As an example, 
consider a choice of sorting algorithms. For simplicity and safety, there is nothing to 
beat the bubble sort — it is simple enough that one can code it from scratch each time 

20 one needs it and still be fairly confident that it works correctly the first time. The 
problem is, the bubble sort is slow. Just about any other sorting algorithm may be 
faster; it may also be complex enough that one may need to crack a book to 
implement it. In addition, one may have to test more thoroughly to be confident that 
the code works correctly. 

25 In other cases, coding priorities work together. Small often equals fast, for example. 



Definitions of Priority Items 



Item 


Definition 


Correctness 


The code works correctly. This item might seem superfluous, but experience 
tells us differently. 


Size 


This does not refer to the number of source code lines, but to the total size 
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oi compiled cone ^ine .ciass niesj. ii also inciuu.es overncau nnpo&cu uy 
non-functional data, e.g., strings used internally in the program. 
Traditionally, size also includes memory usage. In our case, the client/server 
network connection is the most important bottleneck; what counts is what 
goes over the wire. 


Speed 


This includes both execution speed (as measured by CPU usage) and 
perceived responsiveness from the user's point of view. These are not 
necessarily the same thing. 

A guideline is to make the code fast enough, but not to waste time making it 
iaster man mat. 11 one needs to son d recoras, cnoose dud Die son. 11 one is 
sorting a million records, choose Quicksort. 

Speed bottlenecks are rarely obvious. Before one decides that an operation 
or <x suu&ysiem iieeua opiimizdiion, iry 10 gci iioru. kiclicl on wiicrc me real 
bottleneck is. 




lOlCIdJlV^C lUWdlUa CllOllCOUo llipiil dllU. OlllCi CHOI L/OIlUlllOllo. A lllo LlOCo llOL 

mpan that n rsvnomm c\r rnntinp ^Hrtiild nccf*r\t QarhflQP but that Should 

handle it gracefully. 


Safety 


Choose the implementation that one is most likely to develop without any 
bugs. 


Testability 


Easy to test 


Maintainability 


Code that is easy to maintain typically has several characteristics: 
It is easy to read and understand. 

Tt io \i//=»ll £»TH"*cjt"\onl Qtf*H True oil r\\\rc /"»riQt"i crf^c i lif^/iQ'tp'C r\r tiypc I tr\ r\P» rnonp 
11 lo WC11 ClIUdpdUlaLCLl. A Ilia dllUWa dlallgCd ^UpUalCo Ol llACo^ IO UC lUaUC 

with some confidence that it won't blow up something else. 

Portion of the present description, including comments in the code, is in 

agreement with the code. 


Sim Tt 1 ir 




Reusability 


This can mean class or function reuse in the same project, or it can mean 
preparing for reuse on a later project. Designing for reuse typically has an 
overhead of around 50%, split among additional design time (to find good 
generalizations), additional portion of the present description requirements 
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and additional testing. 

A good compromise is often just to choose a design that does not preclude 
reuse; the best tool for this is known as encapsulation. 


Portability 


The code is reusable across platforms. Coding for portability typically 

entails such things as: 

Using a cross-platform library 

Using a subset of a language or library that is common and consistent across 
platforms 

Isolating platform dependencies 

In the specific case of Java, we need to accommodate differences between 
Java VM implementations, differences between library implementations and 

U111C1 CllvC-o UCIWCCII llUol V_J \J lo. 

Java as a totally portable programming environment is a myth. One 
consequence is that we must test on a number of platforms — different 
hardware platforms, different operating systems and different Web 
browsers. 



Priority Rankings 

These rankings are specific to the Telebank project. 



Client 


NT Server 


Host 


Correctness 


Correctness 


Correctness 


Size 


Robustness 


Robustness 


Testability 


Safety 


Safety 


Portability 


Testability 


Speed 


Robustness 


Speed 


Testability 


Safety 


Maintainability 


Maintainability 


Maintainability 


Simplicity 


Simplicity 


Simplicity 


Reusability 


Reusability 


Reusability 


Portability 


Portability 


Speed 


Size 


Size 



Program Organization 
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Module Organization 

The term module in this context refers to a source file. A source file should contain 
5 one public class; it may contain additional non-public classes. 

The elements of a module should be in the following order: 

Package name 

Import section 

Class definition(s). 
10 Class header 

Constants (final class variables): public, protected, private 

Public static inner classes 

Protected inner classes, static or otherwise 

Private inner classes, static or otherwise 
15 Class variables (private only) 

Fields (instance variables) (private only) 

Constructors 

Other methods. 

20 

When ordering methods, ignore visibility specifiers (public, protected, private) and 
follow these guidelines instead: 
Keep related methods together 

When overriding superclass functions, keep them in the same order as in the 
25 superclass, and preferably together. 

The class should end with the unitTest, getExpectedResult and main 
methods. 

Module Header 

30 
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The module header consists of the package name and the import section. In addition, 
there should be a comment at the top with SourceSafe keywords. With these in 
place, we can see at a glance what this file is about: 
/* 

5 * $Archive : $ 

* $Revision: $ 

* $Date: $ 

* $Author: $ 
*/ 

10 In the import section, list each imported module explicitly. 
Example: 



Right 




Wrong 






IMPORT 


JAVA . AWT . FRAME ; 


import 


j ava . 


awt . * ; 


IMPORT 


JAVA . AWT . GRAPHICS ; 


import 


j ava . 


awt . event . * ; 


IMPORT 




import 


j ava . 


applet . * ; 


JAVA . AWT . EVENT . WlNDOWADAPTER ; 








IMPORT 


JAVA . AWT . EVENT . WlNDOWEVENT ; 








IMPORT 


JAVA . APPLET . APPLETCONTEXT ; 









Neither of these conventions is consistently maintainable, so don't put a lot of work 
into verifying that all listed modules are used. Likewise, don't spend time converting 
existing modules from one format to the other. 



1 5 Code Layout 

A good layout strategy should accurately and consistently represent the logical 
structure of the code, it should make the code readable, and it should be easy to 
maintain. The rules in this portion of the description are designed to meet those 
criteria. 
20 Class Headers 

Write class headers on a single line if there is room for it. 

If not, break the line before extends and implements. Indent succeeding lines. 
If the class header is on a single line, put the opening brace at the end of that line. 
If the class header needs multiple lines, put the opening brace left aligned on a line 
25 by itself. 

Method Headers 
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Write method headers on a single line if there is room for it. 

If not, break the line immediately after the opening parenthesis. This leaves all the 
parameters on the same line. 

If there still isn't enough room, put each parameter on its own line. 
5 If the method header is on a single line, put the opening brace at the end of that line. 
If the method header needs multiple lines, put the opening brace left aligned on a 
line by itself. 
Indentation 

Indentation is three (3) spaces. Actually, indentation is one tab, which should be set 
10 to display as three spaces. 

Use tabs for indentation only. Any white space after the indentation level should be 
actual spaces, so that the formatting may be reasonable no matter how many spaces a 
tab equals. 

White Space in the Code 
15 Whitespacedoes,ingeneral,enhancereadability. 
Add one space in the following places: 
between operators 

after comma in method declarations and invocations 

after semicolons in f or-loops 
20 after opening parentheses 

before closing parentheses 

after opening square bracket (index operator) 

before closing square bracket 

before and after the assignment operator 
25 No space in the following places: 

Between a method name and the opening parenthesis 

Between opening and closing parentheses in a function declaration or invocation 
with an empty parameter list 

Between opening and closing square brackets in an array declaration where the 
30 number of elements is not specified 

This example illustrates the above rules: 

IP ( ! MYCOMBOVALID ) { 
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myAc counts . removeAll ( ) ; 

for ( int iAccount = 0; iAccount < accountList . size ( ) ; 
++ iAccount ) { 

MYACCOUNTS . ADD ITEM ( ACCOUNTLIST . GET ( IACCOUNT 
5 ) .TOSTRING () ) ; 
} 

final String strAccount = ContextManager . query ( SOME_ID 

) ; 

int nlndex = getAccount Index ( strAccount ); 
10 myAccounts . select ( Math.max( 0, nlndex ) ); 

myComboValid = true; 

} 

private String myTitles[] = null; // array of strings 
15 myClient . height = 

size. height - mylnsets.top - mylnsets . bottom - 
myTitle . height ; 

public String getltem( int nRow, int nColumn ) { 
20 return (String) myVlist [ nColumn ] .elementAt ( nRow ); 

} 

Use blank lines to separate "paragraphs" of related code lines. 
Indentation hints for the Visual Studio Editor 
Ctrl+Shift+8 toggles visibility of tabs and spaces. 
25 To indent or outdent sections of code, select the code (at least one complete line) and 
use tab for indent, Shift-Tab for outdent. 

To auto-format sections of code, select the code and hit Alt+F8. 
Alt+Enter in the source window brings up the source file property dialog, which 
allows one to set indentation levels on a file-by-file basis. This is useful for viewing 
30 sample code, which is often formatted weirdly. 

To set the number of spaces displayed per tab, select the Editor tab on the dialog 
box served up by the Tools, Options command: 

Braces and Line Breaks 
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Always use (curly) braces, even for blocks with only one statement. This removes 
one common source of bugs and eases maintenance: 



5 Figure 67 illustrates an interface 6700 associated with the ability of inserting or 
removing statements within a block without worrying about adding or removing 
braces. One never has a problem matching else clauses to if clauses. 



Example: 



Ri 


ght 






Wrong 


IF 


( NBOTTOM < N INDEX 


) { 




if ( nBottom < nlndex ) 




MYTOPROW = N INDEX 


- ROWS ( ) + 


1; 


myTopRow = nlndex - rows ( ) + 


} 


ELSE IF ( NINDEX < 


MYTOPROW ) 


{ 


1; 




MYTOPROW = NINDEX; 






else if ( nlndex < myTopRow ) 


} 








myTopRow = nlndex; 



10 This rule applies to the following constructs: 
for, while and do-while loops 
if -else statements 
try, catch and finally clauses 
synchronized blocks. 

15 

Note that the opening brace is at the end of the first line, even for class and method 
definitions. The only exception is if the expression needs to be broken; in that case, 
readability is best served by putting the opening brace on the next line. 
Aligning Assignment Statements 
20 Align the = of related assignment statements. This sets them off as a group and 
shows clearly that they are related. 

Do not align the = of unrelated statements. Such alignment gives an erroneous 
impression of relatedness. 

25 Example: 



Right 



Wrong 
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nPanelWidth 


90; 


N PANEL WIDTH 


90; 


nPanelHeight = 


30; 


NPANELHEIGHT 


30; 






nselected Index = 


0; 


nSelectedlndex 


= 0; 


NLASTINDEX 


12; 


nLast Index 


= 12; 







Line Lengths and Line Breaks 

One statement per line. 
5 Try to keep line lengths below 80 characters. This rule is not absolute; it is better to 
have a 90-character line than to break a statement. 
If one must break a line, indent the continuation line(s). 

If one must break a line, make it obvious by ending the first line with something that 
needs a continuation: 
10 Break assignments after the assignment operator. 

Break arithmetic and logical expressions after an operator. 
Break the line to emphasize major sub-expressions. 

Break method invocations after the opening parenthesis. If the parameter list still 
won't fit, break between each parameter or between each logical group of parameters 
15 if this seems better. 

Break method declarations the same way, and put the opening brace on the next line, 
wmndented. 

If one need to break conditional expressions (e.g., in if or while-statements), follow 
rules 1 and 2 above, and put the opening brace on the next line, wmndented. 
20 Using extra variables top hold partial (intermediate) expressions can help one avoid 
line breaks and at the same time improve readability by making the code self-portion 
of the present descriptioning. This is a judgement call; the following example goes 
too far, perhaps, but does at least illustrate the point: 



Original condition 



IF ( LCLICKTIME - MYPREVIOUSCLK < DOUBLECLICK_TIME 
MYSELECTION == NROWCL I CKED ) 

{ 



-313- 



} 



Possible rewrite 



FINAL LONG LCLICKlNTERVAL = LCLICKTIME - MYPREVIOUSCLK; 

FINAL BOOLEAN BDOUBLECLICK = (LCLICKlNTERVAL < DOUBLECLICK_TIME ) ; 

FINAL BOOLEAN BCLICKSAMEROW = (MYSELECTION == NROWCLICKED) ; 

IF ( BDOXJBLECLICK && BCLICKSAMEROW ) { 

} 



Switch/case Layout 

Align each cases with the switch. Additional indenting of the cases does not 
5 contribute measurably to display the logical structure of the program, and leads to 
excessive indentation. 

Indent the statements that belong to a switch, one statement to a line. 

In the case of large, repetitive lists of cases, it may be better to do a table layout as 

follows: 

10 switch ( some_value ) { 

case easel : bla_bla [ 0 ] = valuel ; break; 
case case2 : bla_bla [ 0 ] = value2 ; break; 
case case3 : bla_bla [ 0 ] = value3; break; 

15 } 

Consider, though: In cases where this looks good, perhaps a totally table-driven 
solution would be a better solution. 

Anonymous Classes 

20 

An anonymous class is a particular form of inner classes; an innovation of Java 1.1. 
It is a curious enough construct that we supply two examples of how to format it. 
If one uses a class more than once, assign an instance to a variable: 

ACTIONLISTENER ACTIONL I STENER = NEW ACTIONLISTENER ( ) { 
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public void processActionEvent ( ActionEvent e ) { 

} 

5 }; 

myComboBox.addActionListener ( actionListener ) ; 
myButton . addActionListener ( actionListener ); 
More often than not, the anonymous class is a listener designed to handle events 
10 from one specific widget only. In this case, define and instantiate the class directly in 
the code, as follows: 

MYCOMBOBOX . ADDACTIONLISTENER ( NEW ACTIONLISTENER ( ) { 

public void processActionEvent ( ActionEvent e ) { 

15 

} 

} >; 

Naming Conventions 

20 

Package Names 

Package names are always in lower case. To ensure global uniqueness, package 
names are prefixed with no . dnb . tb. 

25 . 

File Names 

Path: The path follows the package name. If a file is part of the package 
no . dnb . tb . client, and one is using C : \Data\Telebank as your root directory, 
30 the path to the file is: 

C : \Data\Telebank\no\dnb\ tb\client 
Note lower-case names of intermediate directories. 
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The name of the file must be the same as the name of the public class defined in the 
file (with exactly the same case), with the extension . j ava. Thus, the class 
Kontoutskrif t in package no . dnb . tb . client . func resides here: 
C : \Data\Telebank\no\dnb\tb\client\func\Kontoutskrif t . java 

5 

Classes 

Use proper case for all class names, with first character upper case. 
Separate multi-word class names using capitalization with no leading underscore. 
1 0 Architectural classes have English names; functional classes have Norwegian names 

(?) 

Examples: 

15 class FunctionPanel . . . 
class Kontoutskrif t . . . 
A Note on Proper Case Identifiers 

To create a proper case identifier, write down the identifier as normal words, e.g., 
"get customer name". Next, capitalize each word except possibly the first, which is 
20 only capitalized for classes: "get Customer Name". Finally, concatenate the words 
into a single word: getCustomerName. 

Note that compound word usage differs across languages. If the above example were 
in Norwegian, the name should be hentKundenavn, not hentKundeNavn! 

25 Methods 

Method names are in proper case, with initial lower-case letter. If possible, construct 
method names that follow the action-object paradigm, i.e., getAccount, 
printAll. Prefer getsize ( ) to size ( ) ; this is consistent with changes to Java in 
30 JDK 1.1. 
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Method names do not use any hungarian prefixes to indicate return type. Return type 
can often be indicated by an object name in the method name, i.e., 
get Account List. 

Methods are called in the context of their class. Accordingly, it is not necessary to 
5 repeat the class name in method names. If the class Customer has a method to 
retrieve the customer's name, name this method get Name rather than 
getCustomerName. When users of the class invoke this method, they write 
something like customer . getName ( ) , which is preferable to 
customer . getCustomerName ( ) . 

10 

Fields 

A field is a non-static member variable, sometimes called an instance variable. 
All field names start with the characters "my", followed by a mixed-case identifier. 
15 This is standard practice in Java programming, and reminiscent of the C++ 
convention of prefixing member variables with "m_". 

Since the "my" convention is not easily combined with hungarian prefixes, try to 

make the type obvious in the variable name. 

Examples: 

20 

private Dimension mySize; 
private Account myAccount; 
Class Variables 

A class variable is a static member variable. 
25 All class variables start with the characters "the", followed by a mixed-case 

identifier. Since this convention is not easily combined with hungarian prefixes, try 

to make the type obvious in the variable name. 

Examples: 

30 private static AccountList theAccountList ; 



Local Variables 
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Local variables use hungarian prefix conventions. The following prefixes are used: 



Prefix 


Data type 


Examples 


Str 


String 


strServer, strTitle 


N 


Integer 


nCustomers, nWidth 


I 


Integer used as an index in a for loop 


i Customer, i 


A 


Array (put this in front of other prefix) 


astrTitles [] 


Pnl 


Panel 


pnlMain 


clr 


Color 


clrForeground, clrBackground 









Although this table may get additional entries over time, most objects do not have 
defined prefixes and never may. A reasonable name is often the same as the class 



5 name, but with lower-case first character, e.g.: 
Account account = 
getContextO . getCustomer ( ) . getAccount ( ) ; 

Constants 

10 

Constants are "static final" members of classes. Java has adopted the C 
convention for #de fined constants and uses upper-case names. 
Examples: 

15 public static final int DEFAULT_COLOR = Color. black; 

private static final String DE FAULT_S ERVER = " \\LF3DEV01" ; 
Javadoc comments are required for public, protected and package constants. 

Exceptions 

20 

Exception names follow class naming conventions, with the additional requirement 
that the name end in Exception. 



Programming Style 
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This portion of the description covers layout conventions and coding principles. 
Visibility (Scope) 

As a general rule, scope should be as narrow as possible. 
All fields and class variables should be private. 

If one absolutely needs outside access to such fields, use access methods, e.g.: 

CLASS PERSON { 

private String myName; 

public void setName ( Sring strName ) { 
MYNAME = STRNAME; 

} 

public String getName) { 
RETURN MYNAME; 

} 

} 

Be aware, however, that a proliferation of access methods conflict with the 
principles of good object-oriented design. Even though access is controlled, the 
implementation (in particular the data type) is fairly exposed; this creates a coupling 
between object definition and object use that may be tighter than necessary. 

Try to think of objects in terms of their behavior rather than the data fields they 
contain. In the example above, ask yourself what one would like that Person object 
to be able to do, and provide methods for that instead. 

Code Granularity (Method Size) 
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A reasonable line count for a method depends on its complexity. A module that 
consists of sequential statements can be longer than a method containing complex 
conditials and loops. If the sequential code is repetitive, such as an index-by-index 
array initialization, the method may be as long as it takes. (One should, however, 
5 think twice about your design. Perhaps there are better ways of doing it?) 

A method should preferably do one single thing, and the method name should reflect 
this accurately. If it does more, ensure that this is reflected in the method name. If 
this leads to an ugly method name, reconsider the structure of your code. If one had a 
10 function named initPanelManagerAndReadAccountList, the code would 
probably benefit from a split into methods named initPanelManager and 
readAccountList. 

Variables 

15 

Use only one variable declaration per line. This increases readability and eases 
maintainability: 



Right 






Wrong 




PRIVATE 


INT MYWIDTH = 


150; 


private 


int myWidth = 150, 


PRIVATE 


INT MYHEIGHT = 


50; 




myHeight = 50; 



All fields and class variables should be private. 
20 Initialization 

All variables, including fields and class variables, should be initialized at the point 
of declaration if possible. Even though all Java declarations have default 
initialization values (0, null, false), spell this out explicitly. 

25 

Java allows initialization of arrays using the same syntax as C and C++, by enclosing 
a comma-delimited set of values in braces. A comma after the final value is 
permissible: use this facility, as it makes for easier maintenance — it is easier to add 
additional values to or remove values from the end of the list. 
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Java 1.1 allows initializer blocks among the declarations. An initializer block is a 
section of code enclosed in braces. There are two kinds of initializer blocks: static 
and instance. 

5 

Static initializer blocks are executed the first time a class is instantiated. During 
static initialization (class initialization), things happen in the following order: 
Class initialization of the superclass is performed, unless it has been done earlier. 
Static variables are initialized and static initializer blocks are executed. This happens 
10 in the order they are listed, from top to bottom. Instance variables, instance initializer 
blocks and methods don't figure into this. 

Note that static and instance initializer blocks are allowed in Java 1.1. Static 
initializer blocks are executed in order when the class is first instantiated; instance 
15 initializer blocks are executed in order after the superclass constructor runs, but 
before the class constructor runs. 

Instance initializer blocks are executed whenever a class is instantiated. During 
object initialization (instance initialization), things happen in the following order: 
20 If this is the first time the class is instantiated, all the class (static) initialization takes 
place. 

We enter a constructor. If we have not specified a constructor, a default constructor 
with no arguments is supplied automatically by the compiler. 

25 The superclass constructor is called. If your constructor does not explicitly invoke a 
superclass constructor, the default (argument-less) superclass constructor is called 
anyway. 

All instance variables are initialized and instance initializer blocks are executed. 
30 This happens in the order they are listed, from top to bottom. Class variables, class 
initializer blocks and methods don't figure into this. 
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Use initializer blocks to perform any initialization that can't be performed by direct 
variable initialization; put each initializer block immediately following the variable 
in question. In the examples below, note that the array can be initialized without 
using an initializer block, while the vector object requires one because of the calls to 
5 the addElement method. 



Examples: 



private Vector myListof Something = new Vector (); 
10 { // Instance initializer block 

myListof Something .addElement ( someObject ) ; 
myListof Something .addElement ( anotherObject ) ; 

} 



15 private static int[] anMultipliers = { 
5, 4, 3, 2, 7, 6, 5, 4, 3, 2, 

}; 

private static MyClass theMyClass = new MyClassO; 
20 static { // Static initializer block 

theMyClass . setValue ( someValue ) ; 

} 

Variable Usage 

25 

Always use a variable for a single purpose. At times it is tempting to reuse an 
existing variable; avoid this temptation: 
int i ; 

for ( i = 0; i < myAccountList . size ( ) ; ++i ) { 

} 

// Swap elements: 
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i = someArray [ 0 ] ,- 

someArray [ 0 ] = someArray [ 1 ] ; 

someArray [ 1 ] = i ; 



The two uses of i above have nothing to do with one another. Creating unique 
variables for each purpose makes your code more readable. 

5 Straight-line Code 

Straight-line code divides into two categories: 

A sequence of statements that must be in a specific order 

10 In this case, there are dependencies between statements; one statement must be 
executed before another for the program logic to work correctly. Here are a few 
simple guidelines: 

Organize the code so that the dependencies are obvious. 
Name methods so that dependencies are obvious at their point of call. 
15 Use method parameters or return values to make dependencies obvious. 
Portion of the present description unclear dependencies. 

A sequence of statements whose order doesn't matter 

In this case, the program may work correctly no matter what the order of statements. 
20 Organize the statements so that readers need not skip around to find needed 
information: 

Keep related statements together 

Localize references to variables, i.e., declare and initialize variables as close as 
possible to where they are used. 

25 



Conditionals 
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Complex conditions can be hard to read and understand. One way to alleviate this is 
by using extra boolean variables. In the first fragment below, the meaning of the test 
is not obvious; in the second, it is crystal clear: 



Murky 



IF ( I ELEMENT < 0 | | MAX_ELEMENTS < I ELEMENT | | 
I ELEMENT == ILASTELEMENT ) 

{ 
} 



Clear 



FINAL BOOLEAN BFINISHED = I ELEMENT < 0 | | MAX_ELEMENTS < I ELEMENT ; 
FINAL BOOLEAN B REPEATED ENTRY = I ELEMENT == ILASTELEMENT; 
IF ( BFINISHED | | BREPEATEDENTRY ) { 

} 



5 This approach both simplifies and portion of the present descriptions complex 

expressions, making them easier to program without errors and easier to maintain. 

Never use > or >= in comparisons. Instead, switch the operators around and use < or 
< = . In this way the smaller number is always on the left-hand side, a practice that has 
10 been shown to be more readable when applied consistently. 

If in doubt about operator precedence, don't look it up; use parentheses instead. They 
may not be needed, but they cost nothing, and save code readers from looking up the 
same thing. 

15 

If one codes a chain of if-then statements, code the most common cases first. 

Strive to minimize the number of branches in your code. Whenever one finds 
himself or herself dealing with a special case, take a moment to consider if it is 
20 possible to handle the problem in a more general fashion. Linear code is far easier to 
test. 
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Make conditional blocks of code short enough to view all at once. Around 30 lines is 
enough. 

5 Limit nesting to three levels. 

Compare boolean values to true or false implicitly, not explicitly: 







Wrong 




IF 


( B VALID ) { 


if ( bValid == 


true ) { 


} 




} 




if 


( ! bValid ) { 


if ( bValid == 


false ) { 


} 




} 





Loops 

10 

Prefer a for loop whenever possible. The advantages of the for loop is that it 
collects the loop control in a single place, and that it allows one to declare a loop 
control variable that is not accessible outside the loop. Example: 

for ( int i = 0~* i < vector . size ( ) ; + + i ) \ 

_> 

15 

Never modify the loop control variable inside the for loop. If this becomes 
necessary, use a while loop instead. Consider the example above: If the purpose of 
the loop were to delete selected items from the vector, a for loop would be 
inappropriate since one wouldn't increment the loop control variable consistently: 

20 



No 



for ( int iltem = 0; iltem < vector . size ( ) ; ++iltem ) { 
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MyClass item = (MyClass) vector . element At ( iltem ) ,- 
if ( item. isOldAndTired ( ) ) { 

vector . removeElementAt ( iltem ); 

--iltem; // © Loop control is off limits! © 

} 

} 



Yes 



int i item = 0; 

while ( i item < vector. size () ) { 

MyClass item = (myclass) vector . elementat ( iitem ); 
IF ( item . isdeletable ( ) ) { 

VECTOR . REMOVEELEMENTAT ( I ITEM ) ; 
} ELSE { 

++IITEM; 

} 

} 



Prefer loops that test exit conditions at the top or the bottom. If this cannot be easily 
accomplished, rewrite the loop as a while ( true ) 'infinite' loop with a test in 
the middle. 

5 If possible, use only a single break statement to exit the loop. 

If possible, make loops short enough to view all at once. This is especially important 
if the loop body is complex. If the loop code grows beyond about 30 lines, consider 
restructuring the code. 

10 

Limit nesting to three levels. 
Switches 

15 Never let flow control "fall through" from one case label to the next by omitting the 
break statement. If you feel an urge to do this because of common code, consider 
factoring out the common code in a new helper method. 
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Exceptions 

Type Conversions 
5 Notes on Specific Keywords and Constructs 
final 

The final keyword is a relative of the C++ keyword const (though not the same). 
Apply it to classes, methods and all kinds of variables: 
A final class may not be subclassed. 
10 A final method may not be overridden. 
A final variable may never be changed. 

Using final on a class or method may have an optimization effect as well. The 
compiler may be able to perform inlining or compile-time linking instead of dynamic 
linking at run-time. For this reason, apply final to all classes and methods that 
15 are not intended to be subclassed or overridden. (This is not to say that all non- 
final classes or methods are subclassed or overridden.) 

Likewise, all variables (including function parameters) that can be final should be 
final. In the case of constants, this may allow inlining by the compiler, and it is in 
any case an excellent portion of the present description tool. 
20 return 

A method that returns a value should have a single return statement at the end of 
the method. 

If compliance with rule 1 makes your code needlessly complex put your single 
return statement elsewhere. 
25 If compliance with rule 2 makes your code needlessly complex use multiple return 
statements. 

One is, in other words, free to do as one likes. The overall goal is readability. 
If one breaks rule 1, make sure that: 
the structure of your method is obvious, and that 
30 the return statements are clearly visible, perhaps by setting them off with a blank 
line above and below, or an obscene end-line comment. 
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If one does feel an urge to break these rules, take a minute to consider if an 
alternative design might be possible, perhaps by offloading some of the methods 
work on helper methods, 
transient 

5 This keyword is applied to data elements that should not be serialized. Consider the 
Customer class as an example: it has a private member of type Thread that is used 
for background downloading of the customer's account list. A thread is not 
serializable, so the Thread member is declared transient. 



10 Constructors 



15 



There should normally be only one "main" constructor in a class. Additional 
convenience constructors may be defined, but they should be implemented in terms 
of the main constructor. The point of this is to avoid duplicate code: 



'Main" Constructor 



public MultiLineLabel ( String strLabel, 
int nMarginWidth, 
int nMarginHeight , 
int nText Al ignment , 
int nFixedSize ) 



{ 



breakLabel ( strLabel ) ; 
myMarginWidth = nMarginWidth; 
myMarginHeight = nMarginHeight ; 
myText Al ignment = nText Al ignment ; 
myFixedWidth = nFixedSize; 



} 



Wrong convenience constructor (repeats code from above) 



public MultiLineLabel ( String strLabel ) 



{ 



breakLabel ( strLabel ) ; 
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myMarginWidth = 0 ; 
myMarginHeight = 0; 
myText Al ignment = LEFT ; 
myFixedWidth = 0; 

} 



Correct convenience constructor 



PUBLIC MULTlLlNELABEL ( STRING STRLABEL ) 

{ 

THIS ( STRLABEL, 0, 0, LEFT, 0 ); 

} 



Threads 

Debugging and profiling can be made significantly more effective by naming all 
5 threads explicitly. Therefore, make sure always to use the Thread constructors that 
take a name parameter, e.g. use Thread (String name) instead of Thread () . 

Portion of the present description (Comments) 

10 JavaDoc 

Use javadoc comments for all classes, methods and constants. 
As a general rule, member variables (fields) are private, and don't need javadoc 
comments. If public or protected fields are required for some particular reason, these 
1 5 must be javaportion of the present descriptioned. 

Macros to insert skeleton comment blocks may be provided. 

Class Headers 



20 



/ * * 

* class description 
* 
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your name (your company) 
another name (his or her company) 

$ Revision $ 

some other class 



* ©author 

* ©author 

* ©author 

* ©version 

* ©see 

* ©see 
*/ 

Use a short form of company name, such as AC or DnB. 



1 0 Method Headers 



15 



/ * * 

* Validates user id and password; returns a Context 
structure 

* This is a synchronous service . 



20 



25 



30 



* ©param 

* ©param 



strUserld User id 

strPassword Password 

A Context structure if logon succeeds, else 



no . dnb . tb . types . Context 

no . dnb . tb . interfaces . Isession 

java . rmi . Remote Except ion if the connection 



* ©return 
null 

* ©see 

* ©see 

* ©exception 
fails 

*/ 

public Context getContext ( 
String strUserld, 

String strPassword ) throws j ava . rmi . RemoteExcept ion 

{ 
} 

Note that the ©exception tag requires an explanation after the exception name! 



SourceSafe Fields 

35 
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The SourceSafe $Revision $ keyword is used in the ©version field. 

Comments in the Code 

5 Use //-style comments rather than /* ... */ comments in the code. This allows 
one to comment out large blocks of code using /* ... */. (If comments nested 
this would not be a problem. They don't, however.) 

Add a blank line before any stand-alone comment line. If the comment is extensive 
10 or important, add a blank line below as well. 

Indent the comment with its corresponding code. 

Comments should clarify the intent of the code, not repeat the code in a more 
1 5 verbose way. Aim for a higher level of abstraction than the code itself. Focus on the 
why rather than the how; the how should be obvious from the code. 



Wrong 


1 = 0; 


// SET I TO 0 


WHILE ( I < VECTOR.SIZE() ) { 


// LOOP OVER VECTOR 


ELEMENTS 




CMBNAMES - ADD ( VECTOR . ELEMENTAT ( I ) ) ; 


// ADD ELEMENT TO COMBOBOX 


+ + i; 

} 


// INCREMENT I 


Better 


// ADD ALL THE ELEMENTS TO THE COMBO BOX: 




1=0; 




WHILE ( I < VECTOR. SIZE ( ) ) { 




CMBNAMES ( VECTOR . ELEMENTAT ( I ) ) ; 




+ + i; 

} 
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If the code is not obvious, your first course of action should be to restructure the 
code to make it obvious. If this is not possible, portion of the present description the 
how, by all means. 

End-line comments should apply to a single line only. Comments that apply to more 
5 than one line should be above the code. 

Working comments: 

10 Insert comments containing the words TODO as a reminder to yourself or others 
that something remains to be done, or that there is an unresolved issue. 

Error Handling 

1 5 Java's method of choice for handling error conditions is exception handling. 

Exception handling allows one to keep the sequential flow of the functional code 
separate from the error handling. This leads to less complex code. 

Error Handling on the Server 

20 

Signaling Errors to the Client 

Whenever an error occurs in a remote method invocation, this may normally be 
signaled to the client by throwing an exception. Technical errors are always signaled 
25 by an exception; functional errors may be returned in the form of objects if that is 
more convenient. 

Logging 

30 Logging to the NT event log is done through the ErrorLog class. 



Error Handling on the Client 
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Logging 

The context manager allows logging from the client to the server. This is done 
5 through the ContextManager.safeLog* family of methods. 

Reporting Errors 

Error reporting on the client is done by publishing an ERROR, e.g.: 
10 try { 

. . . something . . . 

} 

catch ( Some Except ion e ) { 
15 ContextManager .publish ( ContextManager . ERROR, e ); 

} 

The context manager may take care of informing the user, if necessary; a special 
20 message panel may be created for this purpose. Application code may not normally 
have to deal directly with error reporting. 

When an error occurs on the server (during a remote method invocation), the server 
throws an exception. In the case of data downloads (Kontoutskrift, etc.) this is 
25 handled uniformly in the download threads. In the case of truly synchronous calls, 
the functional code must handle the exception as shown in the example above. 

Debugging and Testing 

30 This portion of the description describes how one can code to ease debugging and 
testing. The actual processes of debugging and testing are described elsewhere. 

Debugging 
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Pure debug code can be enclosed in special comment delimiters that may be stripped 
off in a release build. A debug block starts with / / { {DEBUG and ends with 
/ / } } DEBUG, the only difference being direction of the braces. 
5 The class no . dnb . arch . ut il . Debug contains methods useful for debugging; in 
particular, it holds trace and assert methods. 

Unit Testing 

10 The main Method 

Java allows any class to define a main function, even though the class may not be 
intended to be an application's entry point. This feature can be used for unit testing 
of classes. For example, the AccountNumber class might provide the following 
15 main function to exercise the class: 
//{ {UNITTEST 

public static void main( String [] args ) { 

AccountNumber account = new AccountNumber ( "42600505380" ); 
System . out .print In ( "account = \"" + account + 
20 "\"; isValid = " + account . isVal id ( ) ); 

account = new AccountNumber ( "42600505381" ); 
System. out .print In ( "account = \" " + account + 
"\"; isValid = " + account . isVal id ( ) ); 

} 

25 //}}UNITTEST 

Note that the above method may never be called except in explicit unit testing. It 
does, however, bloat the code needlessly. To enable us to strip it out for a release 
build, pure unit test code should be enclosed in special comment delimiters. A unit 
30 test block starts with // { {unittest and ends with // } }unittest, the only 
difference being direction of the braces. 

Specific Unit Testing Methods 
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In some cases, unit testing can be completely or partially automated. The 
requirement is that the test produces text, and that this text can be reliably compared 
to another text, the expected result. 

5 

To build automated unit testing into a class, define two static methods as follows: 
public static void unitTest ( PrintWriter ps ); 

This method exercises the class, printing its output on ps. 
10 public static String getExpectedResult () ; 

This method should return a (hard-coded!) string. 

The automated testing loops through all classes and compares the output from the 
unitTest method with the string returned from getExpectedResult. This setup 
15 is intended to simplify regression testing. There are limitations: this method cannot 
test interaction with widgets, for example, nor can it handle dynamic results. (An 
output such as today's date can't be hard-coded into getExpectedResults. Using 
method invocations in getExpectedResults would defeat the whole purpose of 
the test, as we might well be comparing garbage to identical garbage.) 



The following example shows how this framework might be applied to the Account 
class. Note that the main function in this case merely invokes the unitTest 
function. 

25 public class Account ... { 
//{ {UNITTEST 

public static void unitTest { PrintWriter ps ) { 
try { 



20 



Account account = 



30 



new Account ( "42600505380 



it 



" Konrad 



Kunde " , 



CHECKING ) ; 



ps.println( "account = \ " " 



+ account + "\» » 



) ; 
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// Next statement trows exception due to 
illegal account #: 

account = 

new Account ( "42600505381" , "John Doe", 

5 CHECKING ) ; 

} 

catch ( java . text . Par seExcept ion e ) { 
ps.println( e ); 

} 

10 } 

public static String getExpectedResult ( ) { 
return 

"account = \ "4260 . 05 . 05380 (L0NN) Konrad 

Kunde\"\n" + 

15 "java . text . Par seExcept ion : Illegal account 

number \n" ; 

} 

public static void main{ String args [] ) { 
Debug . trace ( Debug . unitTest ( 
20 "no. dnb.tb. types. Account" ) ) ; 

} 

//}} UNITTEST 

} 

In addition to the possibilities for automating regression testing, this approach has 
25 the benefit that the code, the test conditions and the expected results are close 
together and easy to keep synchronized. 

Further Reading 

30 Core Java, Gary Cornell/Cay S. Horstmann [The SunSoft Press 1996] 

Covers Java 1.02. Good introduction to Java. 
Java in a Nutshell, David Flanagan [O'Reilly 1997] 
Covers Java 1.1; includes examples. Strong coverage of inner classes. 
Writing Solid Code, Steve Maguire [Microsoft Press 1993] 
35 Debugging techniques and attitudes. 
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Code Complete, Steve McConnel [Microsoft Press 1993] 
Detailed coverage of software construction techniques. 
Design Patterns: Elements of Reusable Object-Oriented Software, 
Gamma, Helm, Johnson, Vlissides [Addison-Wesley 1995] 

5 Practical guide to object-oriented design and programming. 

PROJECT STANDARDS 
Application Development Standards and Procedures 

10 

The ReTA Application Development Standards and Procedures portion of the 
description consists of the standards, rules, and guidelines to be followed during the 
application development process for programming and portion of the present 
descriptioning programs. This portion of the present description is not meant to be a 
15 training manual. Rather, it is a reference for the standards set by the development 
architecture. 

Use of Application Development Standards and Procedures to provide a consistent 
way of designing, portion of the present descriptioning, programming, etc. over the 
20 different areas of work, such as user interface design, and data design. 

Build Process 

Editing Source Code 

25 

To enter and edit source code for a ReTA Application, the standard tool is Microsoft 
Visual J++ 6.0. This Development Environment allows the user to edit and create 
Java source files, IDL source files, and Active Server Pages. 

30 Editing Java source files are done by opening the Java project which contains the 
desired source file to be edited. Locate the Java source file in the project and enter 
the necessary changes. Once changes have been made the file must be saved. 
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Editing IDL (Interface Definition Language) files are opened up individually in the 
Microsoft Visual Studio J++ 6.0 Development Environment. The file is opened and 
changes are made, once changes are made the file is saved. 

Editing ASP (Active Server Pages) files are done by opening up the file in Microsoft 
Visual Studio J-H- 6.0 Development Environment. The file is opened and changes 
are made, once changes are made the file is saved. 



10 Compiling VJ++ Projects/IDL 



To compile the Microsoft Visual J++ Projects and build COM components in ReTA 
there are steps that must be followed. 



15 Generate the Type Libraries. 

Use the midl.exe command line tool is used to generate the type libraries. 



Generate the stubs from the Type Libraries. 
Use thejavatlb.exe to generate the stubs from the .tlb files. 
20 javatlb Id . /p Activity /p:b- AFActivity.tlb 



Use thejavaguid.exe to generate the guid's for the stubs. 



javaguid CodesTable\CAFCTRetrieval. class CodesTableMAFCTRetrieval. class 

25 

Compile the Microsoft Visual J++ Project. 



Figure 68 shows a Visual J++ Build Environment 6800. To begin a build, the Build 
button 6802 is selected and Build 6804 is selected from the corresponding menu. 

30 

Generate the DLL 's. 
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Use the exegen.exe command line utility. 

Source Code Debugging 

5 ReTA developers have the ability to debug the Architecture files, Business Objects, 
Application files, and Active Server Pages. 

Debugging Architecture or Application files 

10 To debug Architecture or Application Java source code, the developer may open up 
the Microsoft Visual J ++ 6.0 project that contains that Java source file. Select the 
Debug menu and then the processes option, set a breakpoint where the code is 
suspect and attach to the "MTX" process. For help on how to attach to a process 
refer to the Microsoft Visual J++ help. 

15 

Figure 69 shows an interface 6900 for attaching to the MTS Process for debugging. 
Processes 6902 and their corresponding titles 6904 are shown. 

Debugging Active Server Pages 

20 

To debug an Active Server Page (assuming the ASP page is written in VBScript) the 
developer may code in the key word "stop" where the developer would like to start 
the debugging. The developer can then step into the ASP code, this applies to the 
global. asa file as well. For more information regarding debugging Active Server 
25 Pages, refer to the Visual Studio online help. 

Figure 70 shows an interface 7000 for debugging an Active Server Page (example 
global.asa file 7002). 

30 Unit Testing Business Objects 
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For a ReTA developer to perform a unit test on a Business Object, the developer 
may code a "main" method on the Java source file. This may allow the developer to 
call the various methods of the Business Object and inspect the results to ensure the 
object is working properly. The developer may invoke the main method from the 
5 command line using the Java command line utility "Jview.exe." 
public static void main(String[] args) 

{ 

if (args[0].equals("l")) { 

JUnitOfWork connection=null; 
10 try 
{ 

//Create the Domain 
JDomain myDomain=new 
JDomain(AFConstants.getAFProsisInterfaceDSNLabel() 5 AFPersistableObj.getAppli 
1 5 cationDatabaseUsername0,AFPersistableObj .getApplicationDatabasePassword()); 

//Create a connection 

connection = (JUnitOfWork)myDomain.newConnection(); 

20 //create an extent for the class we wish to persist. 

JExtent extent = (JExtent)new JExtent("BObjects.RetaCustomer"); 
System. out.println (" Domain and Extent Created Success "); 

// Create our Customer Object 
25 System. out.println (" Create Customer "); 

RetaCustomer theObj=new RetaCustomer(); 

theObj.setSsn(123456789); 

theObj. setName(**Esch Raphael"); 

theObj .setLevel("Partner"); 
3 0 theObj . set Age(99) ; 

System. out.println (" Going to update record "); 
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extent.update(theObj,connection); 

System.out.println (" Done OK. "); 
connection.closeO; 

5 

Code Generation using Rational Rose 

The Rational Rose modeling tool allows developers to define and communicate 
10 software architecture, resulting in: 

Accelerated development, by improved communication among various team 
members 

Improved quality, by mapping business processes to software architecture, and 
Increased visibility and predictability, by making critical design decisions explicit 
1 5 visually. 

Rational Rose has the ability to generate Java Class files and within these files 
javadoc comments are generated along with rose comments. 

20 Figure 71 illustrates an exemplary frame 7100 of Rose generated java file and 
javadoc comments 7102. 

STANDARDS 

25 Naming Standards 

Folder/Directory 



30 



Internet Information Server WWWRoot Folder 

The naming standard for ReTA web-based applications. 

C:\InetPub\wwwroot\ReTAApplication\XXXName 
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In IIS 4.0 a virtual directory is defined to point to the preceding path. The properties 
on the directory allow execute and basic authentication permissions. For each 
separate application there may be a global. asa file which may reside in the "root" 
folder of the application. 

Files 



Naming conventions used and recommended. 



File Type 


Naming Standard 


Comments 


Business Object Java File 


BO<business object 
name>.java 


All business objects may 
start with a "BO" 
prefixed to their name. 


Business Object Class 
Factory Java File 


BO<business object 
name>Factory.java 


All class factories may be 
prefixed with "BO" and 
suffixed with "Factory". 


Activity Java File 


AXX<activity name>.java 


All activities may be 
prefixed with an "A" 

UlCil <X IWU-L/IldiclVlCl 

initial for the activity, 
followed by the full name 
of the activity. 


Sub-Activity Java File 


SAXX<sub-activity 
name>.java 


All sub-activities may be 
prefixed with SA, and 
then a two-character 
name initial that denotes 
which activity it belongs 
to ("XX"), followed by 
the sub-activity full 
name. 


Business Object DDL File 


BO<business object name>.idl 


All business objects may 
start with a "BO" 
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File Type Naming Standard Comments 







prefixed to their name 


jrvcuviiy wj\-t rue 


/V.A^Ar^d.CllVlLy nclITlC--.ItlI 


All Qr"tl \/1 tl £»C TT1Q\/ \\(* 

/vii dC'iiviiiCo iiidy uc 

prefixed with an "A" 
then a two-character 
initial for the activity, 
followed by the full name 
of the activity. 


Sub-Activity IDL File 


SAXX<sub-activity 
name>.java 


All sub-activities may be 
prefixed with SA 5 and 
men <± iwo-cndrd.c-i.er 
name initial that denotes 
which activity it belongs 
to ("XX"), followed by 
the sub-activity full 
name. 


Active Server Page File - 
Activity Page 


< xxxname>index.asp 


The Active Server Page 
may be a single mixed- 
case meaningful word 
that reflects the activity 
ine Aor page oeiongs 10 
suffixed with "index". 
Therefore the activity 
page for Customer would 
look like 

"Cn^tomprTnHpx a^r*" 

V^UOLv/lllvllllUvA.ClOU . 


Active Server Page File - 
SubActivity Page 


<subactivityname>.asp 


The Active Server Page 
may be a single mixed- 
case meaningful word 
that reflects the 
SubActivity the page 
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File Type 


Naming Standard 


Comments 






performs. Therefore a 






ouD/\ciiviiy inai reviews 






all customers in the 






Customer Activity 






would look like 






"Review AllCustomers.as 


Image Files 


<activitylnitial>name.jpg or 


Images may be contained 




<activitylnitial>name gif 


within an "images" 






directory for each 






application. For example 






an images directory for 






the "Billing" application 






would exist in the file 






system as 






"/Billing/images". All 






images may reside in this 






directory for that 






application. Therefore an 






image mat oeiongs to tne 






"CustomerLookup" 






activity in the "Billing" 






application would be 






named 






"CLWarning_icon.jpg". 



Application Files 
Business Object 

BORetaCustomer.java OR BORetaCustomer.idl 
Business Object Class Factory 
BOCustomerLookupFactory.java 
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Activity 

ACLCustomerLookupjava OR ACLCustomerLookup.idl 

Sub-Activity 

SACLCustDetailCommit.java OR SACLCustDetailCommit.idl 
Architecture Files 



File Type 


Naming Standard 


Comments 


Architecture Java 


AFXX<fi lename>. j ava 


All Java architecture files 


Files 




may be prefixed with 






"Arch", then two letter 






initial that identifies the 






package it belongs to. For 






example an architecture 






file that is from the 






Session package would 






be named 






"AFSEfilename.java". 


Architecture IDL 


IAFXXfilename.idl 


Interfaces for architecture 


files 




components that do not 




AFXXfilename.idl 


include any "coclass" 






statements are prefixed 






with an 'T\ 






All java packages may 






have a corresponding DDL 






file. For example 






EventHandler may have 






an EDL with this name, 






within this DDL may be 






all the associated 
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File Type Naming Standard Comments 



coclass's that make up 
the package. 

Proposed Convention 

Interfaces for architecture components that do not include any "coclass" statements 
are prefixed with an 
5 IAFSEEventListener.idl 

All architecture components may use the component name as the filename for the 
IDL. For example, if the component name is AFSESystemPreferences the DDL 
filename may be: 

10 

AFSESystemPreferences. idl 

All Java packages may have a corresponding IDL file. For example EventHandler 
may have an IDL with this name, within this IDL may be all the associated coclass's 
15 that make up the package. 

EventHandler. idl - <EventHandler - name of java package > 

Example of - coclasses defined within "EventHandler. idl" 

t 

20 uuid(F9205423-38B6-l ldl-A328-0060080FBDF2), 

helpstring("XXEventHandler Class"), 
JAVACLASSC'EventHandler.XXEventHandler"), 
PROGID("EventHandler.XXEventHandler"), 
TRANSACTION_SUPPORTED 

25 ] 

coclass CXXEventHandler 

{ 

[default] interface IXXEventHandler; 
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[ 

uuid(C82965A3-6A3B-lldl-A3A9-0060080FBDF2), 
helpstring("AFEventCollection Class"), 
JAVACLASS("EventHandler.AFEventCollection"), 
5 PROGrD("EventHandler.AFEventCollection"), 
TRANSACTIONSUPPORTED 

] 

coclass CXXEventCollection 

{ 

10 [default] interface IXXEventCollection; 

}; 

Version Control Process 
15 Coding Standards 

Active Server Pages 
Delimiters 

20 

ASP delimiters (<%'s and %>'s) are placed in the very left hand margin, not in the 
middle of lines (unless 1. One uses the "<%= variable %>" format or unless 2. This 
way, all the code can be included on one line, in which case one still puts the 
"<%"on the left margin). This improved code readability and made it easier to 
25 determine where ASP code blocks began and HTML ended, and vice versa. 

Option Explicit 

If using VBScript within the Active Server Page, the keywords "Option Explicit" 
30 should appear at the beginning of every script block. Enabling Option Explicit may 
cause the scripting engine to fault when it encounters an undeclared variable (a 
variable is declared with the Dim statement). VBScript is not a compiled language, 



-347- 



and the runtime interpreter does very little to catch your programming errors. 
Therefore using Option Explicit should be absolutely mandatory. 

Variable Declaration 

5 

If using VBScript within the Active Server Page, put multiple Dims on a single line 
for faster execution (verified by Microsoft) 
i.e. do this: 
Dim a, b, c 
10 ...instead of this: 
Dim a 
Dimb 
Dim c 

1 5 Error Handling 

Currently, it is required to invoke the EventHandler.process method passing in the 
ReTA EventCollection after every application Activity or architecture Session call. 
In the event that an error did occur during the prior application call, the 
20 EventHandler may process the error information and issue a HTTP Redirect to 
direct the client browser to the error page. 

Local Functions 

25 Where Active Server Functions are embedded within a page they should be placed at 
the start of the page after the standard HTML header. Functions themselves should 
be written to the standard for the language in which they are written, VB Script or 
JavaScript within <% %> quotes. 



30 



ASP Architecture Header 



-348- 



On any Active Server Page using the ReTA Architecuture there are some necessary 
statements needed at the beginning of each ASP page. Each page must include a 
"#Include" statement. This may bring in the architecture header file, which contains 
common variable definitions and architecture initialization statements. 

5 

To include the header file, add the following statement at the top of the Active 

Server Page. 

<% Option Explicit %> 

<!— #include virtual - VpostTest/retaASPHeader.inc" — > 

10 <!-- 

-> 

<!- -> 
<!-- All asp pages must include the Include file — > 

15 <!-- retaASPHeader.inc file. -> 
<!-- -> 
<!- 

************************************************* 
-> 

20 

Variable Naming Conventions 



g_Name 


Any global variable (declared outside of a Sub or Function) 


s_Name 


a variable referencing a Session Variable 


a_Name 


a variable referencing an Application Variable 


fName 


a variable containing information from the Form collection 


SName 


Any string of characters 


Iname 


Any number 


BName 


a Boolean value of TRUE or FALSE 


OName 


an object 


CoName 


a collection of objects 
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XNameArray 



An array, where 'x' may be V for string, 'b* for Boolean, etc. 



Control Naming Conventions 



BtnName 


Button 


TxtName 


Text box or area 


OptName 


Option button (aka radio button) 


ChkName 


Check box 


SelName 


Combo box/drop down/SELECT control 



5 Create Server Side Variable Sparingly 



Developers should ensure that variables declared in the Active Server Page are 
reused if at all possible to try and reduce the memory demands on the web server. 
An example would be the use of an 'err' variable to capture the return code from all 
10 MTS component calls. 



Comments 



While the use of comments within an Active Server Page are useful for describing 
1 5 the logical flow of the application, overuse should be avoided as comments are 

evaluated during execution and can hinder overall performance. Comments should 
be used sparingly and only to describe code that is difficult to understand or follow 
otherwise. 



20 HTML 



HTML guidelines are necessary so each HTML programmer on the project can share 
in a common effort to establish best practice across the whole of the project. By 
moving beyond the HTML 2.0 Specification, the application can support Java, 
25 frames, and tables, among other added features. 
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File names may be composed of a single lower-case meaningful word that reflects 
the file's contents ( i.e. financial.htm). Since different platforms handle 
capitalization differently, we may avoid capital letters to avoid any possible 
conflicts. All file names should end with ".htm". The ".html" ending leads to 
5 problems when porting to a machine that only recognizes three character file 

identifiers. Most importantly, files should be saved within the appropriate folder 
upon creation (i.e. financial/financial.htm). Names should easily convey the 
functionality or dialog that it belongs to. 

10 Page Title 

It is crucial that users recognize that they are on a ReTA page, especially if they have 
accessed the site via a search engine (in this case, they would not have the "natural 
or the normal entry page" introduction to the site). The user would need to access the 
15 welcome page to the application. The title of the page should reflect the application 
name "/" activity name. 

Data Validation Header File 

20 Every static HTML page or every top frame page must include the ReTA Data 

Validation JavaScript file if they are going to create Form elements that utilize the 
UI Framework client-side validation functions. Adding the following code after the 
<HEAD> tag may include this file and bring it down to the browser level. Note that 
this only needs to done once in the event of a HTML Frame based application. 

25 

<Script Src = "/ReTAScripts/retaDataValidation.js" Type = "Text/JavaScript"> 
Image File Names 

30 Image file names may be composed of a single lower-case word that consists of a 
two letter initial that stands for the activity they belong to ( i.e. clwarning_icon.gif). 
Since different platforms handle capitalization differently, we may avoid capital 
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letters to avoid any possible conflicts. Most importantly, files should be saved 
within the appropriate folder upon creation (i.e. financial/images/txdollarsign.gif). 

Image ALT Tag 

5 

Always use the ALT tag with images, in case the site is accessed by a browser with 
limited support for browsers (or a user who stops the page download before it is 
complete). 

<IMG SRC = "/App/Images/imgStart.gif ' ALT = "[ReTA Start Application]'^ 

10 

MET A Tag Name 

The <META> tag provides a way to store information about the portion of the 
present description that is not available elsewhere in the portion of the present 
15 description. For example, the META tag can contain catalog, author, or index 
information that various search engines can use. 

This example illustrates a portion of the present description that is indexed under the 
terms "ReTA", the activity of the page is "ACLCustomerLookup", and the 
subactivity is " SAReviewAllCustomers ". 
20 <HEAD> 

<META NAME="keywords" CONTENT— f ReT A ACLCustomerLookup 

SAReviewAllCustomers"> 

</HEAD> 

25 Alternate text for images 

Some Web browsers cannot display images and some Web users may not want to 
use image loading even if their software can display images because they are have a 
slow connection. For these browsers and users, the ALT attribute specifies the text 
30 to be displayed instead of the image. For example, <IMG SRC— 'aclogo.gif ' 

ALT=" Andersen Consulting logo">. If a Web browser cannot not display aclogo.gif 
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or a Web user wishes not to view the logo, the text "Company logo" may be 
displayed to screen instead. 



Comments 

5 

While the use of comments within an HTML portion of the present description are 
useful for describing the logical flow of the application, overuse should be avoided 
as comments are evaluated during execution and can hinder overall performance. 
Comments should be sparingly used and only to describe code that is difficult to 
10 understand or follow otherwise. 

Comments for HTML code should conform to the following guidelines: 
Introduce code with the following comments: 

<!— Filepath: /Application/html/appStart.htm 

<! —Created By: Jane Doe 

15 <! -Modified By: John Doe 

<! -Modification Date: 1/1/99 

<! —Revision #: 1.1 
Limit comments for describing complex statements that are not easily followed. 
Eliminate all comments promoting the HTML code generating application 
20 (i.e. < — ! This page generated by Front Page — >). 
Screen Resolution 



All HTML files should be viewable at resolutions of 800 x 600 and above. 
This standard allows for a range of screen resolutions to ensure that all users may be 
25 able to view the pages. However pages should be tested at screen resolutions of 640 
x 480 and 1024 x 768 pixels in order to ensure that layout and presentation do not 
deteriorate at different resolutions. At 640 x 480 the appearance of scroll bars is 
acceptable, as this resolution is not directly supported by the applications being 
developed. 

30 

Graphics Sizes 
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Explicitly define the height and width of images used in pages. When this definition 
does not take place, browsers size the images themselves, which slows down the 
painting process. Browsers that do not have support for the WIDTH and HEIGHT 
attributes to the IMG tag may simply ignore them and lay out the portion of the 
5 present description normally. 

<IMG SRC = "iso-ne.gif ' WIDTH=413 HEIGHT=356> 



JavaScript 



10 JavaScript provides a powerful tool for the creation of client side functionality. It 
suffers however from limited error handling capabilities and problems of 
compatibility between web browsers. JavaScript should be used only where the 
required client side functionality cannot be implemented in HTML and should be 
kept as simple and concise as possible. Completed JavaScript should be tested in as 

15 wide a variety of browsers as possible, especially Internet Explorer. (V4+) and 

Netscape Navigator (4+) as scripts which function cleanly in one browser may throw 
exceptions in another. 



20 



25 



30 



Variable Declaration 

When declaring variables in JavaScript, one may declare multiple variables on a 
single line or one may declare variables on a separate line. One may also initialize a 
variable to a value in your declaration, 
var a, b, c, d, e; 

var sum; 

var message = "hello"; 
Variable Naming Conventions 



returnCode 



Local variables are written in mixed case starting with lower 
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case 



Constants were not defined (DV_NONE) as this caused problems when attempting 
to stay compatible for both browsers (EE 4.0 and Netscape Navigator 4.0). When 
attempting to use constants such as "DVNONE" Netscape failed and MS IE did 
5 not. Thus we used the corresponding numbers and added comments for the 
constants. 

// DV_TYPE_ISNUMERIC -- data type must be numeric 
case 1 : 

10 

Local Functions 

Local functions in JavaScript should be in mixed case, starting with lower case, 
mixing with upper case. 

15 

function retaDataValidation() 
Error Handling 

20 Currently there is no error handling in JavaScript. In JavaScript 1.3 both Microsoft 
Internet Explorer and Netscape Navigator may support the try/catch statement. The 
try/catch may be similar to the try/catch used in Java. It may be our 
recommendation to use the try /catch statement in the next release of JavaScript. 

25 Coding Conventions 

In JavaScript, constructs' may always use the curly brace ("{") to format following 
lines of code, even if there is only one line of code that follows the construct. 
Example: 
30 If(testvar = inputvar) 

{ 
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statement(s)...; 

> 

while(!fs.EOF) 
5 { 

statement 1...; 
statement2...; 

1 0 i f(t estvar ! = inputvar) 

{ 

statement 1...; 

> 

else 
15 { 

statement2...; 
statement3...; 

> 

20 The above example demonstrates how to use the formatting that was described 
above. This enables the developer when debugging/developing pieces of code to 
better read and understand what is in progress in the code. The learning curve may 
be reduced if the developer does not have poorly formatted code to read (especially 
when dealing with complex code). This promotes easy code maintenance. 

25 Commenting 

JavaScript ignores comments; therefore comments may be detailed if necessary 
without effecting performance. Any comments that may be contained on a single line 
may use the "//" comment style. This treats any comments after the "//" to the end of 
the line as a comment. 
30 //this is an example of a single line comment in JavaScript' 
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Comments that explain a complex block of code which require more that on 

sentence of explanation may use the "/**.... */" comment style. We use the javadoc 

style of commenting for multiple line comments. 
/** 

5 * This is another example of comments in JavaScript. 
* It has multiple lines. 
*/ 



ReTA architecture makes use of a JavaScript "js" file. This file resides on the Web 
1 0 Server and assists in performing client side validation. Commenting in this file is 
detailed, as this may not be visible to the client. The beginning of the file has a 
comment block that describes the purpose of the file and lists the author and any 
modification made to the file. 

^*** ******************************************************* ********* 



15 



** 
** 



RETA Distributed Component Architecture JavaScript File 



** FILENAME : retaDataValidation.js 
** 

20 ** DESCRIPTION : Data validation functions 
** 

** retaDataValidation() 
** retaValidateDateFormatO 
* * retalsLeap Year() 

25 ** retaPadDateSegment() 

retaPadDateSegmentQ 



** 
** 



** AUTHOR : MEVANS 

** 

30 ** DATE CREATED : 01/19/99 



** REVISION HISTORY : 
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*.* 

** DATE REVISED BY SIR # DESCRIPTION OF CHANGE 
** 

** 01/19/99 MEVANS Original code. 

5 ** 

************************************************ 

The "js" file contains a detailed comment block describing each function. This 

10 comment block should precede each function in the JavaScript source file. 

^* ****************************************************************** 

* 



20 



** 



** 



Distributed Component Architecture JavaScript Function 



15 ** FUNCTION : retaParseDateSegment 



** 



** DESCRIPTION : This function returns requested date segment. 
** Date segments: month, day, year 

** Date segment delimiters: "/", "\" 



** 

** INPUTS :inputDate 



** 
** 
** 



dateS egmentlndex 



25 ** OUTPUTS :dateSegment 

** - returns if segment not found 

** 

** CALLED FUNCTIONS : 
** 

30 ** AUTHOR : MEVANS 

** 

** DATE CREATED : 01/19/99 
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** REVISION HISTORY : 
** 

** DATE REVISED BY SIR# DESCRIPTION OF CHANGE 
5 ** 

** 01/19/99 MEVANS Original code. 

************************************************* 

*/ 

For multi-line comments required within the function itself, use the multi-line 
10 comment style. 

Java 

15 JAVA guidelines are necessary so each JAVA programmer on the project can share 
in a common effort to establish best practice across the whole of the project. 
Variable Declaration 

When declaring local member variables in a java source file an declare them as 
private. 

20 private String m_name = new StringQ; 

Temporary variables to be used within a method may be declared in lowercase 
and at the beginning of the method, ensure a meaningful name is used. 

public void functionName() 

{ 

25 String valuetotest = ""; 
Int position = 0; 

} 

Constants may be declared in a constant java file and may be in upper case. 
30 Make all constants public members, as this may provide direct access to the 
variable. If a change is made to the variable one must re-compile the java file 
and re-build the DLL's. 
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public class ReTAHTMLConstants 
{ 

public final static int 
DV_RANGE_LESSTHANEQUAL_GREATERTHANEQUAL = 8; 

5 } 

Variable Naming Conventions 



mreturnCode 


Local variables are written in mixed case starting with lower 
case 


DVNONE 


Constants are declared in all uppercase 



Coding Conventions 

10 In Java, constructs may always use the curly brace ("{") to format following lines of 
code, even if there is only one line of code that follows the construct. 
Example: 

If(testvar = inputvar) 

{ 

15 statement(s)... 

} 

while(!fs.EOF) 

{ 

20 statement(s)... 

} 

if(testvar != inputvar) 

{ 

25 statement 1... 

} 

else 

{ 

statement2... 
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} 

The above example demonstrates how to use the formatting that was described 
above. This enables the developer when debugging/developing pieces of code to 
5 better read and understand what is in progress in the code. The learning curve may 
be reduced if the developer does not have poorly formatted code to read (especially 
when dealing with complex code). This promotes easy code maintenance. 

Method Names 

10 

Method names in java use mixed case, starting with lower case, 
public String generateJavaSrc() 

Method Comments 

15 For comments use the javadoc commenting style. This style provides useful portion 
of the present description (in HTML format) that may be generated by the 
javadoc.exe utility. Comments begin with a slash and two asterisks. The first 
sentence should be concise and describe the purpose of the method or class is. "@" 
parameters can be added, each may generate different comments in the html output 

20 from the javadoc.exe utility. 

/** ReTA Component Architecture Java Method 

* 

* METHOD : generateJavaSrc 
* 

25 * DESCRIPTION : This function generates the necessary html to include the 
script 

* tag that specifies the .js file for client side validation. 

* INPUTS : 
* 

30 * OUTPUTS :outputVal; 

* - this returns the formatted html string. 

* CALLED FUNCTIONS : 
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* AUTHOR : DZIMMER 

* DATE CREATED : 01/19/99 
5 * 

* REVISION HISTORY : 

* DATE REVISED BY SIR# DESCRIPTION OF CHANGE 

* 

10 * 01/19/99 DZIMMER Original code. 

* @ author DZIMMER 

* @ return This method returns the string which may make up the html code that 

* contains the JavaScript source file. 
15 */ 

Java Class Comments 

For comments use the javadoc commenting style. This style provides useful portion 

of the present description (in HTML format) that may be generated by the 

20 javadoc.exe utility. Comments begin with a slash and two asterisks. The first 

sentence should be concise and describe the purpose of the method or class is. "@" 

parameters can be added, each may generate different comments in the html output 

from thejavadoc.exe utility. 
/** 

25 * RETA Distributed Component Architecture Java File 
* 

* FILENAME : RETAHTMLConstants.java 

* DESCRIPTION : HTML Constants 
30 * 

* AUTHOR : DZIMMER 
* 
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* 



DATE CREATED 



: 01/22/99 



* 



* 



REVISION HISTORY : 



DATE 



REVISED BY SIR# DESCRIPTION OF CHANGE 



5 



01/22/99 DZIMMER 



Added UI Validation constants. 



©author DZIMMER 



10 



*/ 



Error Handling 

Any statement that can throw an exception may use the try/catch block to handle 
errors. This is necessary in order to evaluate what has been thrown and to determine 
1 5 what to send back to the user. 

IVCEEventCollection anEventCollection = null; 

try 

{ 

anEventCollection=(IAFEventCollection) inEventCollection; 
20 outputBuffer = outputBuffer.append ( m_alignment_start); 



25 




Application Naming Conventions 



30 



Activities 
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The capital letter "A" to indicate and "activity" followed by a two-character activity 
name initial (in capital letters) "XX", followed by the full activity name. 
ACLCustomerLookup 

This name may be the name of the Java file and the java Class name defined in the 
5 Java source file i.e. 

public class ACLCustomerLookup - class definition in java file. 
ACLCustomerLookup .java — java file name. 

Sub-Activities 

10 

Sub- Activities should start with a two character prefix "SA", followed by the sub- 
activity name initial, followed by the sub-activity name. 
SASFSaveFeedback 

This name may be the name of the Java file and the Class name defined in the Java 
15 source file, i.e. 

public class SASFSaveFeedback - class definition in java file. 
SASFSaveFeedback.java - java file name. 

20 Business Objects 

Business Objects naming should start with a prefix of two capital letters "BO", 
followed by the business object name, e.g. "BOCustomerLookup". 

This name may be the name of the Java file and the Class name defined in the Java 
25 source file, i.e. 

public class BOCustomerLookup - class definition in java file. 
BOCustomerLookup java - java file name. 

Business Object's Class Factory 
30 Class Factories naming should start with a prefix of two capital letters "BO", 
followed by the business object name, followed by the term "Factory". 
BOCustomerLookupFactory 
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This name may be the name of the Java file and the Class name defined in the Java 
source file i.e. 

public class BOCustomerLookupFactory - class definition in java file. 
5 BOCustomerLookupFactory - java file name. 

Architecture Java Naming Conventions 

ReTA architecture files should all be prefixed with the ' AF ? standard, 
e.g."AF<filename>.java". 
10 4.4.5 IDL 

IDL (Interface definition Language) files define the interface of a COM component. 
ReTA makes use of the following naming conventions. 

Look with the Platform SDK or MEDL portion of the present description found 
within MSDN. 
15 Application IDL Conventions 
Business Object 

All business objects should include the following statements in the #include section 
of the idlfile. 

20 

#include <Persistence\IAFPersistable.idl> 
#include <ActivityMAFEditable.idl> 

Within the DDL for the Business Object the interface statement requires an "I" in 
25 front 

of the business object name. 

// Description: Interface to the BORetaCustomer Component 

#include <MtxAttr.h> 
30 #include <JavaAttr.h> 

#include <PersistenceUAFPersistable.idl> 
#include <Activity\IAFEditable.idl> 
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[ 

object, 

uuid(8B59B041 -99CF- 1 1 d2-8F88-00805F29842D), 
dual, 

5 helpstring("IBORetaCustomer Interface"), 

pointer_default(unique) 

] 

interface IBORetaCustomer : IDispatch 

{ 

10 import "oaidl.idl"; 

HRESULT getSsn([out, retval] long * ssn); 

}; 

15 

The business object IDL also defines the type library and the coclass. The type 
library may take on the name of the business object with "lib" appended to the end 
of the business object name. The coclass (Com class) may take on the name of the 
business object but may be prefixed with a "C". The following DDL shows the 
20 changes to be made. 

[ 

uuid(8B59B042-99CF-lld2-8F88-00805F29842D), 
version(l.O), 

helpstring("RetaCustomer component") 

25 ] 

library BORetaCustomerLib 

{ 

importlib("stdole2.tlb"); 
[ 

30 uuid(8B59B043-99CF-l Id2-8F88-00805F29842D), 

helpstring("BORetaCustomer Class"), 
JAVACLASS("BObjects.BORetaCustomer"), 
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PROGID("BObjects.BORetaCustomer"), 
TRANSACTION_SUPPORTED 

] 

coclass CBORetaCustomer 
5 { 

[default] interface IBORetaCustomer; 
interface lAFEditable; 
interface IAFPersistable; 

} , ... 

10 

Activity 

All activities should include the following statements in the #include section of the 
idl file. 

15 

#include <Activity\IAFActivity.idl> 
#include <Session\IAFEventListener.idl> 

Within the IDL file the type library should follow the name of the activity and the 
coclass should also follow the naming convention described in the preceding portion 
20 of the description. An example below shows one in bold the changes to be made. 

#include <MtxAttr.h> 
#include <JavaAttr.h> 

25 #include <Activity\IAFActivity.idl> 

#include <Session\IAFEventListener.idl> 
[ 

uuid(299 AC8 A0-A40C- 1 1 d2-8F8F-00805F29842D), 
version(l.O), 

30 helpstring( M ACLCustomerLookup component* 1 ) 

] 

library ACLCustomerLookupLib 
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{ 

importlib("stdole2.tlb"); 
[ 

5 uuid(299AC8Al-A40C-l Id2-8F8F-00805F29842D), 

helpstring("ARETACustomerLookup Class"), 
JAVACLASS("CustomerLookup.ARETACustomerLookup"), 
PROGIDC'CustomerLookup.ARETACustomerLookup"), 
TRANSACTIONSUPPORTED 

10 ] 

coclass CACLCustomerLookup 

{ 

[default] interface IAF Activity; 
interface IAFEventListener; 

15 }; 
}; 

Sub-Activities 

20 All sub-activities should include the following statement in the include section of the 
idl file. 

#include <ActivityMAFSubActivity.idl> 

25 In the EDL file for a sub-activity one must define the type library name and the 
coclass must also be provided. A code example that follows highlighted in bold 
shows the changes to be made to a sub-activity IDL. 

#include <MtxAttr.h> 
30 #include <JavaAttr.h> 



#include <Activity\IAFSubActivity.idl> 
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[ 

uuid(92ElA341-A64B-lld2-8F60-00805F53568F), 
version(l.O), 

helpstring("SACLCustDetailsCommit component") 

5 ] 

library SACLCustDetailsCommitLib 

{ 

importlib("stdole2.tlb"); 

10 

[ 

uuid(49 1 0B8 8 1 - A664- 1 1 d2-8F6 1 -00805F53568F), 
helpstring("SACLCustDetailsCornmit Class"), 
JAVACLASS("CustomerLx>okup.SACLCustDetailsCommit"), 
1 5 PROGID("CustomerLookup.SACLCustDetailsCommit"), 
TRANSACTION_SUPPORTED 

] 

coclass CSACLCustDetailsCommit 

{ 

20 [default] interface IAFSubActivity; 

}; 

25 Architecture IDL Conventions 

Interfaces for architecture components that do not include any "coclass" statements 
may be prefixed with an "I", e.g. "IAFSEEventListener.idl". 

30 All architecture components may use the component name as the filename for the 
DDL. For example, if the component name is AFSESystemPreferences the DDL 
filename may be, e.g."AFSESystemPreferences.idl". 



-369- 



All Java packages may have a corresponding IDL file. For example EventHandler 
may have an IDL with this name, within this IDL may be all the associated coclass 5 s 
that make up the package. 

5 

EventHandler.idl - <EventHandler - name of java package > 



Example of - coclasses defined within "EventHandler.idl" 

[ 

10 uuid(F9205423-38B6-l ldl-A328-0060080FBDF2), 

helpstring("XXEventHandler Class"), 
JAVACLASS("EventHandler.XXEventHandler"), 
PROGro("EventHandler.XXEventHandler"), 
TRANSACTION_SUPPORTED 

15 ] 

coclass CXXEventHandler 

{ 

[default] interface DCXEventHandler; 

}; 

20 

[ 

uuid(C82965 A3-6A3B-1 ldl -A3A9-0060080FBDF2), 
helpstring("AFEventCollection Class"), 
JAVACLASS("EventHandler.AFEventCollection"), 
25 PROGID("EventHandler.AFEventCollection"), 
TRANSACTION_SUPPORTED 

] 

coclass CXXEventCollection 

{ 

30 [default] interface IXXEventCollection; 

}; 
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TESTING 

Figure 72 illustrates a method 7200 for testing a technical architecture. In operation 
7202, a plurality of software modules of a technical architecture are tested in a first 
5 pass. Next, a solution is implemented in operation 7204 for the software modules 
that are found to be defects when tested in the first pass. Subsequent to the first 
pass, in operation 7206, the software modules are tested in a second pass to 
determine whether the solutions implemented in the first pass are defective and 
further determine whether the solutions caused additional defects in the software 
10 modules. In operation 7208, a solution is generated for the software modules that 
are found to be defects when tested in the second pass. In operation 7210, further 
tests are preformed on the software modules in a third pass to determine whether the 
solutions implemented in the second pass are defective. 

1 5 The technical architecture may include execution architecture, development 

architecture, and operations architecture. Further, after the third pass, the generating 
of solutions for software modules found to be defective and the performance of 
subsequent tests on the implemented solutions may be repeated until no defects are 
detected. 

20 

Optionally, the tests may be regression tests. Additionally, testing may be performed 
only on those software modules of the most frequent paths. In yet another aspect, 
the software modules of all legal paths may be tested. Optionally, only the software 
modules related to error and exception handling logic may be tested. The following 
25 material provides a more detailed description of the above-described method. 

The purpose of the Assembly Test Approach Deliverable is to outline the detailed 
approach that may be used to plan and execute the Assembly Test for Phase 1 of the 
Resources eCommerce Technical Architecture (ReTA) initiative. 

30 

Test Objectives and Scope 
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Objectives 

The Assembly Test Approach deliverable outlines the approach that may be used to 
execute the Assembly Test. The Assembly Test ensures related components 
5 (programs) function properly when assembled into dialogs or batch processes and to 
verify that the interfaces have appropriately implemented the system design. 

The Assembly Test Approach outlines the following information: 
Test Objectives and Scope 
10 Regression Testing Approach 

Test Environment (Includes test tools) 

Metrics 

1 5 The Assembly Test Approach may provide the overall guidelines that may be 
adhered to when planning and executing the Assembly Test. 

Scope 

20 The scope of this Assembly Test Approach portion of the present description is 
limited to the Phase 1 enhancements to the ReTA architecture. 

Execution Architecture 

25 

The Execution Architecture comprises all the components required to support an 
application during run-time. The Netcentric Architecture Framework (NCAF) 
identifies those common, run-time services required when an application executes in 
a Netcentric environment. The services can be broken down into logical areas: 
30 Presentation Services, Information Services, Communication Services, 

Communication Fabric Services, Transaction Services, Environment Services, Base 
Services and Business Logic. 
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Execution architecture services typically provide either an interface between the 
application and some system component, or an interface connecting application 
components (for example a distribution service that allows client applications to 
5 execute server application transactions). The technology architecture assembly test 
focuses on testing the end-to-end function and quality of these execution architecture 
services. 

The execution architecture components considered for Assembly test are: 
1 0 Environment Services - Application Services 

Codes Table services: static data code-decode implementation 

Common services: creation of ASP header file to provide common architecture 

constants and functions within application Active Server Pages 

Information Services - Database Services 
1 5 Access: ADO Persistence layer 

Presentation Services - Web Browser 

Form: UI Controls 

Client-side field validation (JavaScript) 

Client architecture file to provide common JavaScript functions (field validation, 
20 date validation, message boxes, etc.). This may provide a single point of 

maintenance and functionality for client architecture services. Grouping attributes 
into single method call 

Dropdown listbox UI Control integration with CodesTable service. 

25 Development Architecture 

The development architecture is built upon an integrated set of tools and 
components, each supporting a specific task or set of tasks in the development 
process. The purpose of the development architecture is to support the tasks 
30 involved in the analysis, design, construction, and maintenance of business systems, 
as well as the associated management processes. 
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The development architecture components considered for Assembly test are: 
System Building Services — Construction 

Application developer coding templates for Active Server Pages, Activity, Sub- 
Activity, View, Mapping, Factory and Business Object. 

5 

Standards and Procedures 

Operations Architecture 

1 0 The Operations Architecture is a combination of tools, support services, procedures, 
and controls required to maintain a production system and keep it running 
efficiently. Unlike the Execution and Development Architectures, its primary users 
are the system administrators and the production support personnel. 

1 5 The operations architecture components considered for Assembly test are: 

Physical Environment Services — Implementing 

Initial server installation (core software only) 

Web server 

Application server 
20 Database server 

Initial workstation installation (core software only) 

Architecture installation process 

Workstation 

Architecture required java files 
25 Architecture frameworks 
Build tools 

Architecture make file 
Visual Studio 95 build tools 
Server 

30 Architecture required database tables 



Other 
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The components considered for Assembly test are: 
Code cleanup 

Component name changes (prefix): Removal of all application references within the 
5 architecture 

Application of naming and coding standards. 

Consolidation of UI control attributes into single method calls. 

Renaming and cleanup of framework constants. 

10 Test Cycles 

The assembly test conditions may be defined as follows: 
Reuse the component test conditions. 

Add test conditions as necessary to obtain 100% message path coverage. 
15 The test cycles may be organized as follows, for each assembly: 
Cycle 1 : test conditions that exercise the most frequent paths 
Cycle 2: test conditions that exercise all other legal paths 
Cycle 3: test conditions that exercise the error and exception handling logic 

20 All cycles may be independent to minimize the overall calendar time required to test. 
In addition, each cycle may be run three times (i.e., three passes): 
The objective of pass 1 is to get through the test as quickly as possible, finding as 
many defects as possible and implementing workarounds where needed. 
The objective of pass 2 is to regression test the defects fixed from pass 1 , and 

25 determine if the pass 1 workarounds caused any more defects. 

The objective of pass 3 is to regression test defects fixed from pass 2; no defects 
should be found. 

By planning three passes, regression tests can be built in to ensure that defects are 
30 completely fixed and the fixes did not break anything else. 
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It is important to note that the Technology Architecture Assembly Test Approach 
applies to both testing after normal construction and testing during "fix-it" or 
"debug" mode. Technology architecture assembly testing for normal development 
may cover all interactions between the technology architecture components, while an 
5 assembly test in "fix-it" mode may cover only the interactions which apply to the fix 
[fixes] being implemented. 

Risks 

10 The risks and risk management approach for the Assembly Test stage are outlined 
below: 

Concurrent development and configuration management 

15 During the phase 1, there may be several simultaneous enhancement efforts. It may 
be essential to follow strict configuration management procedures in order to prevent 
version overwriting. 

Mitigation Plan 

20 

All components to be modified should be checked out of the version control tool 
(Visual Source Safe) with a detailed label stating the change description and the 
developer's name. If separate enhancement efforts require the same file, developers 
should coordinate file control so not to overwrite the other's work. 

25 

Contingency Plan 

Defects may be tracked during the Assembly Test. If a large number of defects are 
attributed to version mismatch or overwriting, the configuration management 
30 approach for development may be reevaluated. Additional resources may need to be 
added to the build and Assembly Test effort. 
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Scope of Test Effort 

Since almost every module may be modified (due to name changes), there may need 
to be extensive assembly testing to ensure no functionality is broken. 

5 

Mitigation Plan 

This Assembly Test approach relies on automation and reuse. There may be an effort 
to automate all Assembly Testing, so that it is easy to both execute the test and verify 
10 the expected results. 

Contingency Plan 

Defects may be tracked during the Assembly Test. If a large number of defects are 
1 5 found for modules, the approach to coding and component testing the modules may 
be reevaluated. 

Regression Testing Approach 

20 After a fix is put into the system, the fix is tested to ensure that it is correct. Other 
functions are "regression" tested in order to ensure that they were not adversely 
affected (broken) by the fix; this is regression testing. In general, the regression test 
should include all functions either directly or indirectly impacted by the fix and be 
executed during each pass. 

25 

At the end of each test stage, a clean test pass for that stage may be conducted. If 
non-critical errors do remain at the end of a test stage, the team leader for that stage 
must sign-off on their portion of the present description. The time required to 
execute the last test pass ought to be minimal, since the cycles should execute 
30 correctly. 
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The three pass approach for technology architecture assembly test may facilitate 
regression testing of defects found in the current test. In addition, the entire 
technology architecture assembly test model may be portion of the present 
descriptioned, repeatable and automated (where possible) in order to be easily re- 
5 executed for each pass. 



For each code fix, a complete Assembly Test may be re-executed. Any new 
conditions created as result of fix implementation may be added to the existing test 
plan (conditions, scripts, etc.). 

10 

Test Environment Requirements 



Technical Configuration 

15 The technology architecture assembly test may occur in the technology architecture 
development environment. It is separated from the technology architecture, assembly 
test environment. 

Figure 72.1 illustrates the application & architecture configuration for a typical 
20 ReTA Build environment 7230. In this model, the testing workstation is configured 
to provide presentation services by way of an HTML 3.2 & JavaScript 1 .2 
compatible web browser. The web/application server 7232 is configured with the 
current assembly test versions of ReTA application and architecture components and 
is connected to a test workstation 7234, a source code repository 7236, and a 
25 database server 7238. 



The following table provides a complete listing of the hardware and software 
configuration of the assembly test environment. 



Name CPU RAM Operating System Software 




RETADEV 
4 


P- 
300 


128 
MB 


Windows NT 4.0 
(SP4) 


Microsoft Visual SourceSafe Client 
6.0 
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Name CPU RAM Operating System Software 











iviicrosoit visual J * • o.u 
Microsoft Visual C++ 6.0 -Tools 
Only 

iviicrosoii internet iLxpiorer *#.ui 

ReTA Issues Tracker 
ReTA SIR Workbench 


RETASRV2 


p- 

166 


60 
MB 


Windows NT 4.0 
(SP4) 


Microsoft Visual SourceSafe Server 
6.0 

HP OmniBack II Client 


QTT>T7C 1H1 1 
O 1 rr O 1 U 1 1 


¥> 

r- 

(4x) 


L ijf> 


windows in 1 
Hfiiicrpriac ocrvcr 
4.0 


Microsoft Internet Explorer 4.01 

A/firrnQnfr TT^ A 0 

IVlll/IUoVJlL LLtJ *T.\J 

Microsoft Transaction Server 2.0 
Microsoft Active Data Objects 2.0 
Oracle8 (Client only) 
HP OmniBack II Client 













External Interfaces 
5 None 

Test Data Management 

The common test data may be copied to the technology architecture assembly test 
10 environment and modified as needed by the development cell to satisfy all the 
technology architecture assembly test conditions. 

After each successful execution of a cycle, the test executor may make a database 
backup. This backup may serve two purposes. It can be used as evidence of a 
1 5 successful execution of the cycle. It can also be used to restart a test execution after a 
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certain sequence of upstream cycles. The details of backup procedures in using the 
backup utility may be provided by the Database Architecture Team prior to the start 
of the technology architecture assembly test execution. 

5 Source Environment 

During the Assembly Test phase of a ReTA engagement, the Source Control 
Administrator may be responsible for the mass checkout and build of the entire 
application or architecture. Figure 73 illustrates that the code for technology 
10 architecture assembly test may be migrated from the technology architecture 

component test environment as defined in the migration procedures. As shown, the 
test workstation 7300 is only connected to the web and application server 7302. The 
web and application server is connected to the source code repository 7304 and the 
database server 7306. 

15 

Automation 

Test Execution - Custom scripts may be created and used by the developer to 
automate the execution of individual Assembly Tests. 

20 

Debugging - Visual Studio Source Code Debugger may be used. 

Problem Management - a System Investigation Requests (SIR) Database for entering 
and managing the problem resolution process may be used to track all issues 
25 detected during assembly test. 

Environment Cleanup 

The developer is responsible for cleaning up the databases and other environment 
30 information after each pass of the test execution. 



Security 
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As part of Assembly test, the following security roles may be created: 
Source Control administrator - responsible for monitoring code migration 
Web/ Application server administrator - responsible for installation, configuration, 
5 maintenance and tuning on the server 

Database administrator - responsible for test database installation, maintenance and 
tuning 

Metrics 

10 

The following metrics may be collected and evaluated throughout technology 
architecture component test: 

Metric Name 

1 5 Definition 
Target 

Frequency of collection and evaluation 

Refer to the Testing Metrics Job Aid in the Business Integration Methodology for 
20 more information. 

Entry and Exit Criteria 

The entry and exit criteria for the different activities in Assembly Testing may 
25 ensure the quality of each deliverable from the testing process. Below are the entry 
and exit criteria for assembly test. 

Stage: Assembly Test Exit Sign-off Details 

Name : 

Date : 

Cell Leader : 
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Test 



Activity 
Develop 
Assembly 



Entry/Exit Criteria 



Signed off 
by... 



Date 



Approach 



Test 



Entry Criteria : 

Capability Release Evaluation Approach 
Completed 

At least 50% of the code completed before 



any Assembly Testing started. 
Exit Criteria: 

A configuration audit must have been 
completed on the source code and Assembly 
Test information after all test cycles run 
successfully. 



Test Resources and Workplan 

5 Resources 

The assembly test team may be responsible for creating the technology architecture 
Assembly Test conditions. The component test conditions developed during the 
design phase may be leveraged in assembly test as well. The Work Cell Leads may 
10 approve all test conditions and expected results. 

The Assembly Test scripts may be developed and executed by Assembly test team. 
The Work Cell Leads may supervise the effort. The Test Manager may sign off on 
the deliverables. The Project Manager may approve the final report. 



Workplan 



20 



See the activities Architecture Design - Assembly Test: Prepare Assembly Test 
Approach and Prepare Assembly Test Plan within the ReTA workplan. 
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Technology Architecture Component Test Approach 
ReTA 



Revision 
Number 


Date 


Prepared By 















5 

Overview 

The purpose of the Component Test Approach Deliverable is to outline the detailed 
10 approach that may be used to plan and execute the Component Test for Phase 1 of 
the Resources eCommerce Technical Architecture (ReTA) initiative. 

Test Objectives and Scope 

1 5 Objectives 

The objective of the Component Test is to ensure that each program in the 
application or architecture has implemented the functional, quality and technical 
specifications and should test all lines of code and branches of logic. At the end of 
20 component test, all lines of code should have been exercised and proven to meet the 
specified functional and quality requirements. 

This objective is met through the following steps: 

• Develop the Component Test Approach 
25 • Plan Component Test 

• Prepare Component Test 

• Establish Component Test Environment 
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• Execute Component Test 

Component testing addresses the initial stages of testing. Generally, testing at the 
component stage tests code. The test data prepared by the programmer tests how the 
5 component or module handles both valid and exception conditions. All logic paths 
are tested. Utility modules or any modules with complex logic should be tested in 
isolation before being integrated with other components. 

Successful completion of the component test for the technology architecture 
10 components ensures that they meet their specifications. Interactions with other 

Technology architecture components are not part of this test. The operations required 
of other components (e.g., data access) by the components under test are replaced by 
stubs. 

1 5 Scope 

The scope of this Component Test Approach portion of the present description is 
limited to the Phase 1 enhancements to the ReTA architecture. These enhancements 
include: 

20 

Execution Architecture 

Environment Services - Application Services 

Codes Table services: static data code-decode implementation 

Common services: creation of ASP header file to provide common architecture 
25 constants and functions within application Active Server Pages 

Information Services - Database Services 

Access: ADO Persistence layer 

Presentation Services - Web Browser 

Form: UI Controls 
30 Client-side field validation (JavaScript) 

Client architecture file to provide common JavaScript functions (field validation, 

date validation, message boxes, etc.). This may provide a single point of 
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maintenance and functionality for client architecture services. Grouping attributes 
into single method call 

Dropdown listbox UI Control integration with CodesTable service. 

5 Development Architecture 

System Building Services - Construction 

Application developer coding templates for Active Server Pages, Activity, Sub- 
Activity, View, Mapping, Factory and Business Object. 

10 Other 

Q Code cleanup 

{7s Component name changes (prefix): Removal of all application references within the 

0j architecture 

Q Application of naming and coding standards. 

ff 15 Consolidation of UI control attributes into single method calls. 

=_ Renaming and cleanup of framework constants. 

^ Test Cycles 

w 20 The test cycles, for each technology architecture component, may be organized as 
follows: 

Cycle 1 : test conditions that exercise the most frequent input, preconditions, and 
paths 

Cycle 2: test conditions that exercise all other legal input, preconditions, and paths 
25 Cycle 3: test conditions that exercise the error and exception handling logic 

All cycles may be independent to minimize the overall calendar time required to test. 
In addition, each cycle may be run three times (i.e., three passes) to meet the 
objectives outlined below: 
30 The objective of pass 1 is to get through the test as quickly as possible, finding as 
many defects as possible and implementing workarounds where needed. 
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The objective of pass 2 is to regression test the defects fixed from pass 1, and 
determine if the pass 1 workarounds caused any more defects. 
The objective of pass 3 is to regression test defects fixed from pass 2; no defects 
should be found. 

5 

By planning three passes, regression tests are built in to ensure defects are fixed and 
did not break anything else. 

It is important to note, the Technology architecture Component Test Approach 
1 0 applies to both testing after normal construction and testing during "fix-it" or 
"debug" mode. 

Risks 

1 5 The risks and risk management approach for the component test stage are outlined 
below: 

Concurrent development and configuration management 

20 During the phase 1, there may be several simultaneous enhancement efforts. It may 
be essential to follow strict configuration management procedures in order to prevent 
version overwriting. 

Mitigation Plan 

25 

All components to be modified should be checked out of the version control tool 
(Visual Source Safe) with a detailed label stating the change description and the 
developer's name. If separate enhancement efforts require the same file, developers 
should coordinate file control so not to overwrite the other's work. 

30 

Contingency Plan 
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Defects may be tracked during the component test. If a large number of defects are 
attributed to version mismatch or overwriting, the configuration management 
approach for development may be reevaluated. Additional resources may need to be 
added to the build and component test effort. 

5 

Scope of Test Effort 

Since almost every module may be modified (due to name changes), there may need 
to be extensive component and assembly testing to ensure no functionality is broken. 
1 0 Mitigation Plan 

This component test approach relies on automation and reuse. There may be an 
effort to automate all component testing, so that it is easy to both execute the test and 
verify the expected results. 

15 

Contingency Plan 

Defects may be tracked during the component test. If a large number of defects are 
found for modules, the approach to coding and testing the modules may be 
20 reevaluated. 

Regression Testing Approach 

After a fix is put into the system, the fix is tested to ensure that it is correct. Other 
25 functions are "regression" tested in order to ensure that they were not adversely 

affected (broken) by the fix; this is regression testing. In general, the regression test 
should include all functions either directly or indirectly impacted by the fix and be 
executed during each pass. 

30 At the end of each test stage, a clean test pass for that stage may be conducted. If 
non-critical errors do remain at the end of a test stage, the team leader for that stage 
must sign-off on their portion of the present description. The time required to 
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execute the last test pass ought to be minimal, since the cycles should execute 
correctly. 

The three pass approach for technology architecture component test may facilitate 
5 regression testing of defects found in the current test. In addition, the entire 
technology architecture component test model may be portion of the present 
descriptioned, repeatable and automated (where possible) in order to be easily re- 
executed for each pass. 

10 For each code fix, a complete component test may be re-executed. Any new 

conditions created as result of fix implementation may be added to the existing test 
plan (conditions, scripts, etc.). 

Test Environment Requirements 

15 

Technical Configuration 

The technology architecture component test may occur in the technology architecture 
development environment. It is separated from the technology architecture, assembly 
20 test environment. 

Figure 74 illustrates the application & architecture configuration for a typical ReTA 
Build environment. In this model, the testing workstation 7400 is configured to 
provide presentation services by way of a HTML 3.2 and JavaScript 1 .2 compatible 
25 web browser. The web/application server 7402 is configured with the current 
assembly test versions of ReTA application and architecture components. 

External Interfaces 

30 None 

Test Data Management 
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The master set of common test data may reside in the central database. Each 
developer may access the data from their local workstation. When necessary, the 
data may be modified to satisfy all the test conditions for the tested components. 
5 The master test data should be exported so that the database tables can be restored to 
their original state once the test cycle is complete. 

Source Environment 

10 The components under test and their technology architecture modules/classes are 

managed within the Source Control tool, Visual Source Safe. They are to be locked 
for the duration of the test; the developer receives exclusive access. 

Automation 

15 

Test Execution - Custom scripts may be created and used by the developer to 
automate the execution of individual component tests. 

Debugging - Visual Studio Source Code Debugger may be used. 

20 

Problem Management - a System Investigation Requests (SIR) Database for entering 
and managing the problem resolution process may be used to track all issues 
detected during assembly test. 

25 Environment Cleanup 

The developer is responsible for cleaning up the databases and other environment 
information after each pass of the test execution. 

30 Security 
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The developer is in charge of configuration management (version control and 
migration control) of the components under their responsibility. When the 
component has successfully completed component test and code review, the 
developer should promote the code to the appropriate, staged location in the version 
5 control repository. 

Metrics 

The following metrics may be collected and evaluated throughout technology 
10 architecture component test: 
Metric Name 
Definition 
Target 

Frequency of collection and evaluation 

15 

Refer to the Testing Metrics Job Aid in the Business Integration Methodology for 
more information. 

Entry and Exit Criteria 

20 

The entry and exit criteria for the different activities in component testing may 
ensure the quality of each deliverable from the testing process. Below are the entry 
and exit criteria for assembly test. 

25 Test Resources and Workplan 

Resources 

The developer responsible for the component build may create the technology 
30 architecture component test conditions. The creation of the test conditions may 

happen concurrently with the detail design of the component. The Work Cell Leads 
may approve all test conditions and expected results. 



-390- 



The component test scripts may be developed and executed by dedicated developers 
within the work cells. In addition, test drivers and stubs to simulate other 
components may be the responsibility of the developer. The Work Cell Leads may 
5 supervise the effort. The Test Manager may sign off on the deliverables. The 
Project Manager may approve the final report. 

Workplan 

10 See the activities Architecture Design - Component Test: Prepare Component Test 
Approach and Prepare Component Test Plan within the ReTA workplan. 



Performance Test Approach 

15 

Overview 

The purpose of the Performance Test Approach Deliverable is to outline the detailed 
approach that may be used to plan and execute the Performance Test for the 
20 Resources eCommerce Technical Architecture (ReTA) initiative. 

Performance and Stress Test simulates high production data volumes and ensures 
that system response time and communication links are adequate. Potential 
bottlenecks are identified and analysis of how the system can perform internally and 
25 with other systems at maximum processing loads is performed. Various members 
from the ReTA Technical Architecture team may perform this test. 

Test Objectives & Scope 



30 



Objectives 
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Performance testing closely emulates the actual workload that an application 
generates and utilizes all environmental components for its test: network, server, 
clients, databases. Performance testing may also allow one to determine how 
effectively the application may function in the current environment and to gauge 
5 how scaleable it may be should the usage increase. 

The ReTA Phase 2 Performance Tests may focus on five primary objectives: 
To measure the response time performance of ReTA framework services in an 
environment that reasonably simulates an expected production environment. 
10 To identify potential performance risks that need to be addressed in order to meet the 
foreseeable application response time requirements. 

To work together with the development teams to analyse issues, identify root causes, 
and develop alternatives for performance enhancement. 
To portion of the present description performance improvement ideas and 
15 suggestions that should be considered for the medium- to long-term. 

To determine baseline hardware and network recommendations for use during 
requirement analysis phases of an engagement. 

20 Scope 

The Performance Test Team may: 

Develop a simulated production-like environment for the purpose of performance 
testing; 

25 Measure online user response times of the reference application under variable user 
load scenarios; 

Recommend possible alternatives for performance enhancement; and, 
Publish final reports describing the results of the Performance Test. 



30 



Risks 
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The following table identifies external risks to be managed by the Performance 
Testing Team. 



Risks 


Actions 


Performance Testing environment negatively 
impacted by Solution Works network traffic 
usage. 


Test cycle execution should be done during 
periods of low network usage (lunch periods, 
aixer normal uusiness nours, eic.^ 


Tuning measures recommended by the 
Performance Testing Team must be 
implemented prior to the beginning of the 
next testing cycle. 


ReTA Architecture team to notify 
Performance Testing Team in the case that 
tuning measures cannot be implemented 
within an agreed-upon time window. 


Other risks being determined. . . 


Performance Team to regularly and 
proactively keep project management 
appraised of new risks and issues. 


Performance Testing Approach 



Approach Description 

The performance testing approach centers on using an automated performance/load 
10 testing application to assist in the test script creation and execution. Three different 
tests (load, stress, and performance) may be executed to accurately determine the 
performance picture of the ReTA Phase 2 architecture. Each test and its 
accompanying test cycles may be designed to simulate varying user volumes. 

1 5 Key Differences between Load, Stress and Performance Testing 

For the purpose of this portion of the present description, Load, Stress and 
Performance Testing may be distinguished. It is important to understand the subtle 
differences amongst the three types of testing. 

20 

Load Testing 
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Load testing is used to subject a server to the load conditions that may be realized in 
a live production environment. This should enable the tester to make a more 
predictable assessment of the performance of a production system and thus eliminate 
5 much of the uncertainty. Load testing focuses on the number of users accessing the 
server, the combination of business transactions that are executed on the server, and 
the impact of the combination of users and transactions on different environment 
components. 

10 Stress Testing 

Stress testing extends the focus of the load test. Whereas load testing stresses the 
server to normal production levels to determine performance, stress testing focuses 
on locating the point at which server performance breaks down. This is achieved by 
15 steadily increasing the number of simulated users that execute a given transaction 
until a breaking point is reached. In addition, a variation of this test would be to 
execute a single transaction repeatedly for an extended period of time. 

Performance Testing 

20 

Performance testing focuses on measuring performance for a specific transaction. 
The performance of a server should be measured under different user load 
conditions. For ReTA Phase 3 testing, cycles may be executed against both 
Oracle 8 Enterprise and Microsoft SQL Server 7.0 databases. 

25 

Testing Process 

For each of the performance tests, the following process may be used to plan, 
execute, and evaluate the results of the tests: 

30 

Plan the Scenario 
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Determine the goal of the test such as the number of simulated users, the transactions 
to be performed and the transactions to be timed. 

Record web scripts 

5 

Record the steps a user may take to complete a transaction with the application. The 
majority of automated testing tools available on the market offer recording 
capabilities for the tester to capture the various actions that make up a single 
transaction as the tester navigates through the application. 

10 

Define the scenario 

A list of virtual users has to be defined in each workstation that is used for testing. 
The number of virtual users and the scripts to be used by each virtual user have to be 
1 5 set up before the scenario can be run. 

Run the scenario 

Since the execution script is pre-recorded, simply clicking a button can run it. The 
20 testing tool may automatically launch all the virtual users and keep track of their test 
status. It should also record and measure the server response time as well as other 
statistics. 

Analysis of performance graphs and reports 

25 

After the scenario has completed its run, the performance graphs may be generated 
and shown to the tester automatically. The tester can then analyze the graphs and 
reports available. Graphs should be available that provide individual page averages, 
complete scenario execution times, and high/low response times. 

30 

Testing Application 
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The application to be used during the ReTA Phase 2 Performance Tests provides 
three simple business and operational function. 



Functional Area 


Description 


Review/Submit 


This set of dialogs provides functionality for inputting and 
database insert and volume retrieval functionality. 


Review Events 


This operational dialog provides custom queries and retrieval 
against the architecture event log. For testing purposes, this 
dialog provides volume data retrieval. 


Customer Maintenance 


This simulated business activity provides customer retrieval, 
update and deletion functionality. For testing purposes, these 
dialogs provide multi-window, transactional functionality. 



The testing script for both the Load and Stress tests consists of the following 
5 activities: 

Application login 

Customer Maintenance (create new) 

Customer Maintenance (modify customer created in step 2) 
Customer Maintenance (lookup existing customer) 
1 0 Customer Maintenance (delete customer created in step 2) 
Submit feedback 
Review feedback 
Review events 
Application logout 

15 

During the database performance test cycles, the following script may be followed: 
Application login 

Customer Maintenance (create new) 

Customer Maintenance (modify customer created in step 2) 
20 Customer Maintenance (lookup existing customer) 

Customer Maintenance (delete customer created in step 2) 
Application logout 
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Performance Test Cycles 

The performance tests may be organized to reuse the component and assembly test 
5 conditions and scripts. In addition, testing functionality may leverage the reference 
application components developed in early phases of the ReTA initiative. A mix of 
various transactions may be used to ensure that the testing clients, web/application 
server, and database server are sufficiently stressed. 

10 Load Test 

The ReTA Phase 2 Load Test is comprised of the following cycles: 
Cycle 1 : 25 concurrent users (various transactions) 
Cycle 2: 50 concurrent users (various transactions) 
15 Cycle 3: 75 concurrent users (various transactions) 
Cycle 4: 100 concurrent users (various transactions) 

Stress Test 

20 The ReTA Phase 2 Stress Test may be comprised of the following test cycles: 
Cycle 1 : 50 concurrent users (various transactions for 2 hours) 
Cycle 2: 100 concurrent users (various transactions for 2 hours) 
Cycle 3: 200 concurrent users (various transactions for 2 hours) 

25 Performance Test 

The ReTA Phase 2 Performance Test may be comprised of the following test cycles: 
Cycle 1 : 50 concurrent users (Customer Lookup/Update, Oracle 8.04 Database) 
Cycle 2: 100 concurrent users (Customer Lookup/Update, Oracle 8.04 Database) 
30 Cycle 3: 50 concurrent users (Customer Lookup/Update, SQL Server 7.0 Database) 
Cycle 4: 100 concurrent users (Customer Lookup/Update, SQL Server 7.0 Database) 
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Test Environment Requirements 

Physical Configuration 

5 Figure 75 illustrates the physical characteristics of the testing environment to be 

utilized during the Performance Testing Phases. In particular, a web and application 
server 7500 is connected to a testing client 7502 and a database server 7504. 

Hardware/Software Configuration 

10 

The following table provides a complete listing of the hardware and software 
configuration of the performance test environment. 



Name CPU RAM Operating System Software 



RETADEV 
4 


P- 
300 


128 
MB 


Windows NT 
Workstation 4.0 

(SP4) 


RSW eTest & eLoad 

Microsoft Internet Explorer 4.01 

ReTA Issues Tracker 
ReTA SIR Workbench 


STPFS1011 


P- 

400 

(4x) 


2 GB 


Windows NT 
Enterprise Server 
4.0 


Microsoft Internet Explorer 4.01 

Microsoft IIS 4.0 

Microsoft Transaction Server 2.0 

Microsoft Active Data Objects 2.0 

Oracle8 (Client only) 

HP OmniBack H Client 


RETADB2 


P- 
300 


128 
MB 


Windows NT Server 
4.0 (SP4) 


Microsoft Internet Explorer 4.01 

Microsoft SQL Server 7.0 
HP OmniBack II Client 


AS88232 


HP 

K57 

0 


3.75 
GB 


HP-UX vl0.20 


Oracle Enterprise Edition 8.04 

HP OmniBack II Client 



1 5 External Interfaces 
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None 

Test Data Management 

5 

The performance test data may be created using an Active Server Page created 
during Phase 2 for the purposes of populating and restoring test data. 
After each successful execution of a cycle, the test executor may refresh the database 
by re-executing the data population Active Server Page. 

10 

Automation 

An automated web-based testing application may be utilized for test script recording 
and playback. The testing application should have the ability to simulate multiple 
15 web clients. 

Debugging - Visual Studio Source Code Debugger may be used. 
Problem Management — a System Investigation Requests (SIR) Database for entering 
and managing the problem resolution process may be used to track all issues 
detected during performance tests. 

20 

Environment Cleanup 

The developer is responsible for cleaning up the databases and other environment 
information after each pass of the test execution. 

25 

Security 

As part of performance test, the following security roles may be created: 
Source Control administrator - responsible for monitoring code migration 
30 Web/ Application server administrator - responsible for installation, configuration, 
maintenance and tuning on the server 
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Database administrator - responsible for test database installation, maintenance and 
tuning 

SIRs/Change Requests 

5 

The Performance Testing Team may, as a result of Performance Tuning analysis, 
create SERs and/or Change Requests, as appropriate. These portion of the present 
descriptions may describe recommendations for performance enhancements to be 
undertaken by the architecture development team. Project management may hold 
10 responsibility for prioritizing and scheduling SIRs and/or Change Requests for the 
immediate-, medium-, and long-term. 

Metrics 

15 The following metrics may be collected and the ReTA Phase 2 performance tests: 

End-to-end response times for individual transactions. 

Measurement summary of transaction performance 

Performance summary of all transactions 

Detailed measurement of transaction performance 
20 Simulated user statistical report 

CPU utilization of Web/Application and database servers. 

Database connection pooling statistics 

Test Resources and Workplan 

25 

Resources 

The performance test team may be responsible for creating the technology 
architecture Performance Test data and scripts. The component test conditions 
30 developed during the design phase may be leveraged in performance test as well. 
The Work Cell Leads may approve all test conditions and expected results. 
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The Performance Test scripts may be developed and executed by Performance 
testing team. The Work Cell Leads may supervise the effort. The Test Manager 
may sign off on the deliverables. The Project Manager may approve the final report. 

5 Workplan 

The workplan for the ReTA Phase 2 Performance Tests can be found within ReTA 
Performance Test Workplan. 

10 The high level tasks within the workplan are as follows: 
Develop testing scenarios (transactional mix) 
Establish testing environment 

Develop data generation, population, and refresh approach 
Develop load generation approach 
15 Get first cut of architecture/application code 
Record and modify automated testing scripts 
Execute test cycles 

Analyze, report, SIRs, change recommendations, etc. 
Code changes per performance management review 
20 Re-execute or get second cut of code. 

CHANGE TRACKER DATABASE USAGE 

25 Figure 76 illustrates a method 7600 for managing change requests in an e-commerce 
environment. A plurality of change requests are received from a plurality of users in 
operation 7602. In operation 7604, the change requests are assigned to developers 
for implementation. The change requests are displayed in operation 7606. The 
displayed change requests are filtered in operation 7608 based on criterion. 

30 Indication is provided in operation 7610 for those change requests which have been 
implemented by the developers. 
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As an option, an indication from one of the developers may be received indicating 
that one of the change requests has been implemented while additionally displaying 
a time when the indication was received. 

5 The criterion may be a predetermined group of criterion for reporting purposes. 
Optionally, the user may select the criterion. 

The users may further be allowed to edit the change requests. In such an 
embodiment, the users may be allowed to edit the change requests via a display 

10 having fields such as a date each change request was entered, the user that requested 
each change request, an application affected by each change request, a status of each 
change request, and a priority of each change request, a description of each change 
request, the developer responsible for implementing each change request, a category 
of each change request, and a target date for implementation of each change request. 

15 Additionally, the fields may also include the target date so that a time may be 

indicated when the target date was last edited. The following material provides a 
more detailed description of the above-described method. 

The following discussion provides an overview of the Change Tracker Database 
20 (CTD) for use on a ReTA engagement. The CTD tracks a change request from the 
time the request is entered to the time the request is closed, after completing an 
evaluation of the change in production. In addition, the CTD has been designed to 
communicate important information regarding the existence, status, and resolution 
of the change request. 

25 

During the lifecycle of a change request, inquiries may arise. Due to the large 
number of people involved in the change control process, there needs to be a 
mechanism to centralize important information regarding the requests. The CTD 
allows the various people involved in the change control process to be fully 
30 informed of the status of the requests at any time. The process may lead to 
efficiency gains and better communication between process participants. 
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To install the tool, refer to the instructions that are provided within the Change 
Tracker Setup portion of the present description. 

Change Lifecycle 

5 

• A change request is submitted by a business user or IT personnel 

• The Change Control Committee may review the change request. 

• The change may be assigned to a developer and the status in the CTD may 
reflect the current status of the request. 

10 

Once the change request is code/tested, it may be migrated into production. 
If it passes the monitor period its status may be closed. Otherwise, the 
change is re-opened and submitted through the process again. 

Tracker Overview 

Figure 76.1 illustrates a framework 7630 associated with the change tracker. See 
Figure 23 for more detail. 

20 Main Window 

Figure 77 illustrates the Change Tracker Main Window 7700. This form serves two 
main purposes. First, it gives the user a quick summary of the change requests 7702. 
Second, this form serves as the driver of the CTD. From this form the user can add 
25 and view change requests as well as view and print reports. The Current user field 
7704 is populated using the users local Windows NT/95 login Id and the Change 
Tracker's User. 

Window Fields 



Field Name Field Description 
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Field Name 


Field Description 


# 


Unique numeric identifier of the Change Request 


Reported 


Date the change request was entered 


Requester 


The person who requested the change request 


Application 


The application area affected by the change request (i.e. Marketing, LIS, 
Vision) 


Function 


The function which the change request affects 


oiaius 


i ne siarus 01 ine cnange request. 


Priority 


The priority of a change request 

1 (rilgnj 

9 fA/IWliiim^ 

Z- ^IVIGUIUIII/ 

3 (Low) 

4 ( Cosmetic^ 


Short 


A short (75 chars max) and concise description of the change request. 


Description 




Assigned To 


The developer who is responsible to code & test the change request. 


Category 


The classification of the change request (Project, Enhancement or 
Emergency) 



Change Request Detail Window 



From the Main Window of the Change Tracker Main Window 7700, select the Add 
5 or Detail buttons 7706,7708. The Change Request Detail window may be displayed. 
Figure 78 illustrates the Change Request Detail Screen 7800. To look at other 
requests, scroll through the record numbers 7802 (located in the bottom, left-hand 
corner). To exit without saving - Click on the Cancel button 7804. Save change 
request and exit window - Click on the Exit button 7806. To print the request - Click 
10 on Print button 7808. 

Window Fields 



Field Name Field Description 
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Field Name Field Description 



CR# 


Automatical lv assigned when a new change reauest is entered 


Date 


Date the change reauest was entered This date defaults to the date of the 
change request entry. 




Portion of the rvresent descrintions who entered the change reauest into the 
CTT. 


Requester 


The person who requested the change request. 


Phone Number 


Phone number of the requester. 


Business Area 


Business area of the reauester 


Platform 


The hardware platform of the system affected by the change request. 


Appl. 


The application affected by the change request. 


Function 


The function affected by the change request. 


Component 


The component affected by the change request. 


Source 


Source of the problem: 

ABEND (Abnormal Program Termination) 

Other 

r enormance 
Prior Change 
Regulatory 


Prior CR# 


Change request number of a previous request that caused this current 
request or is related to the current request. 


Status 


The status of the change request. A change request can have a status of: 

New 

Assigned 

Development 

Testing 

Migrate 

Production 
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Field Name Field Description 





Closed 
Rejected 
Deferred 
Re-Opened 


Priority 


The priority of a change request: 

1 (High) - Change request is necessary for application functionality and is 
an integral component that keeps the system running properly. 

2 (Medium) - Change request is severely needed for proper application 
functionality. 

3 (Low) - Change request can be circumvented but needs to be resolved in 
the near future. 

h {^✓osmetic ) - v^nange Jvequest uoes not aiieci proaucuon uui snouiu dc 
fixed. 


Completion 
Date 


Requester's estimated date for the change request to be completed. 


Risk 


The risk of the change request: High, Medium, Low 


Impact 


The impact of the change request: High, Medium, Low 


Complexity 


The complexity of the change request: High, Medium, Low 


IT Area* 


Project or Area assigned to complete the change request: 

Account Management 

Client Services 

Delivery Systems 

Insurance/Corporate Systems 

Network Services 

Production Services 

Technical Services 
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Field Name 


Field Description 


Category* 


The classification of the change request: 
Project 

A major change to the production environment, including application code, 
system software, hardware, and networks. 
Generally requires more than 160 hours of work. 
Generally tend to have high impact, risk, and complexity. 

Enhancement 

A minor change to the production environment, including application code, 
system software, hardware, and networks. 
Generally requires less than 160 hours of work. 
Generally tend to have low impact, risk, and complexity 

Emergency 

ine application is out oi service ana mere is no worK arouna 

r\. I>CL/Ulliy ayalclll l/dll UC UI lido UCCU L/UIIipiloCU. 
T^) iacc / pnrriifitinTi 

Hardware failure that needs to he renlaced immediate! v 


Site 


The site of the change reauest 


Manager 


Manager responsible for change request. 


Assiened 1 


Primarv nersnn aliened to romnletp the rhan^p remie^t 


Assipned 2 


Second ner^nn a^icmed to romnletp the rliantrp reniip^t 


Short 

Description 


A short (75 chars max) and concise description of the change request. 


Long 

Description 


A detailed description of the change request. 


Target Date 


Date by which change should be ready to be migrated. 


Staging Date 


Date by which change should be ready to be migrated. 
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Field Name Field Description 



Actual Date 


Actual date change is moved into production. 


Actual Hours 


Actual number of hours it took to complete the change request. 


Resolution 


The resolution to the change request. Developers should include a brief 

UCol/llLIllUll Ul LUC L/llall^Co Hid. LI C l\j 11 IC tUUC. !_> ADlculcllltJllo ollUUlll UC iilVCil 

for rharipps that arp rpipptpd 


Change 
Control 
Committee 
Status 


The status of the change with a respect to the Change Control Committee: 

Un-reviewed 

Reviewed 

Follow-Up 


T OF (hr<\ 


± 11C GollllldlC'U JL_/CVC1 Ul 1_/1HJ11 I^.LjV./X-'/ IU lsUlll|JlClC 11 IC L/llclll^C ICUUCoL 


Migrate Metric 


Success of migrating code to production: (Pass / Fail) 

A QQnpi nfpfl w/itVi tfiiQ pVipcVHoy iq tVip Aqciotipp'q 1 1 1 fir T^ntp flplHc TTipqp 

AodUvlalWU W1L11 llllo ^/UvvivlJUA Id 11 lv riOOlgllbv O U— ' OC 1— ' Cllt^ ll^lUj . 1 HWOC 

may be filled automatically with the ID of the current user and the current 
date when the checkbox is checked or unchecked 


Problem 

j_f a yj i cu i a 1 1 \j 1 1 


Explanation of the problems caused by the change request. 


Lessons 
Learned 


Explanation of the successful and unsuccessful tactics used during the 
lifecycle of the change request. 


Closed Bv 


Person who nln^pd thp ohanpp rpnnp^t This fipld mav hp fillpd 
automatically with the current user's ID when the status is changed to 
"Closed", "Rejected" or "Duplicate". 


Date Closed 


Date the change request is no longer being monitored in production. This 
field may be filled automatically with the current date when the status is 
changed to "Closed", "Rejected" or "Duplicate". 



History Detail Window 



From the main window, select the History button 7712 of the Change Tracker Main 
Window 7700. This window allows the user to view the history of changes that 
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have been made to the Target Implementation Date field. Figure 79 illustrates a 
History of Changes Window 7900. Whenever the Target Implementation Date 7902 
is changed, the new value of the Target Implementation Date, the current user ID 
7904 and the current date timestamp 7906 is logged. This form is for display only. 

5 

Note that when a new change request is added to the Change Tracking tool, a record 
may be created for the first Target Implementation Date addition. 



Window Fields 





Field Name 


Field Description 


. ?=§ 


CR# 


Change Request # of the history displayed. 




Data Field 


The name of the field being tracked. In this case, may be "Target 






Implementation Date". 




Value 


The new Target Implementation Date the field was changed to. 




User Name 


The person who changed the Target Implementation Date. 




Date Timestamp 


The date and time the Target Implementation Date was changed. 



10 



Ad-Hoc Reporting Window 

Figure 80 illustrates the Ad-Hoc Reporting Window 8000. This form is where all 
filtering for reporting takes place. Filtering is the process of viewing change 

15 requests based on specified criteria. For instance, if developers wanted to see what 
new change request entries have been assigned to them, they can choose to filter the 
entire database with their name and a status of Assigned. All change request entries 
assigned to that developer may then appear on a report. A user can filter the 
database with one field or up to 17 fields depending on how specific they want to 

20 get. The fields shown include requester 8002, platform 8004, manager 8006, etc. In 
addition, they can filter all change requests within the context of a date range. Thus, 
in the below example, the developer could see what new enhancement changes have 
been requested. 



25 
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Window Fields 



Field Name 


Field Description 


Date From 


The starting date of the date range. If this field is entered, the To Date 




must be entered. 


To Date 


The ending date of the date range. 


Requester 


The person who requested the change request 


Appl. 


The application area affected by the change request (i.e. Marketing, 




LIS, Vision) 


Logged By 


Portion of the present descriptions who entered the change request into 




the system. 


Platform 


The hardware platform of the system affected by the change request. 


Source 


Source of the problem (i.e. Regulatory, ABENDS, Performance, etc.). 


Function 


The function affected by the change request. 


Component 


What component may the change request affect (i.e. Application Code, 




Hardware, etc.). 


Priority 


The priority of a change request. 


Category 


The classification of the change request. 


Status 


The status of the change request. A change request can have a status 




of: New, Assigned, Design, Testing, etc.) 


Manager 


Manager of assigned IT Area 


Assigned To 


Developer assigned to change request. Both the Assigned 1 and 




\ c c 1 cm&fi / Ti 1 c\ c m q\/ \~\ f> /in pn o/i 

-rvbaigncu. z. iiciub iiidy uc qucncti. 


IT Area 


Area assigned to complete the change request (Prod. App. Services, 




Tech. Services, Client Services, etc.). 


Target Date 


Date scheduled to move change into production. 


Site 


The site of the change request. 


Migrate Metric 


Success of migrating code to production. 


Prod. Metric 


Success of code in production. 



Manager Reporting Window 
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Figure 81 illustrates the Manager Reporting Window 8100. This form allows the 
user to select a variety of summary reports, such as IT Area Priority 8102, Manager 
Priority 8104, etc. 

5 Window Fields 



Button Name 


Button Description 


IT Area Priority 


Opens the IT Area by Priority Report. 


IT Area Status 


Opens the IT Area by Status Report. 


Application Priority 


Opens the Application by Priority Report. 


Application Status 


Opens the Application by Status Report. 


Status by Priority 


Opens the Status by Priority Report. 


Manager Priority 


Opens the Manager by Priority Report. 


Manager Status 


Opens the Manager by Status Report. 


ivianager ivugrauon 


wpens tne ivianager ivngrauon ivepon. 


Manager 


Opens the Manager Production Report. 


Production 




Manager Category 


Opens the Manager by Category Report. 


Closed and 


Opens the Closed and Rejected Report. 


Rejected 




Implement 


Opens the Implementation Report. 


Recent Chg. Line 


Opens the Recent Change Line Report. 


Recent Chg. Detail 


Opens the Recent Change Detail Reports. 


Capacity Planning 


Opens the Capacity Planning Report. 


Exit 


Returns the user to the Change Request Log Form. 



Migrating Window 

Figure 82 illustrates the Migration Checklist Window 8200. This form allows the 
10 user to view general information 8202 about the change request and lists what sign- 
offs are needed in order for the change to be migrated to production. When a 
Migration Checklist item is checked or unchecked, the Sign-Off ID 8204 & Sign-Off 
Date 8206 may be filled in automatically with the current user's ID and the current 
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date. Only the Capacity Planner should check the Capacity Planning Sign-Off 
checkbox. 



Window Fields 



Field Name 



CR# 
Date 

Logged By 

Requester 

Platform 

Appl. 

Component 

Status 

Priority 
Category 
Manager 
Assigned To 
Target Date 
Actual Date 
Short Description 
Resolution 



Statement of 
Work/Scope 
Definition 
Checkbox 



Field Description 



Automatically assigned when a new change request is entered. 

Date the change request was entered. This date defaults to the date of 

the change request entry. 

Portion of the present descriptions who entered the change request into 
the CTT. 

The person who requested the change request 

The hardware platform of the system affected by the change request. 
The application area affected by the change request. 
What components may the change request affect (i.e. Application 
Code, Hardware, etc.). 

The status of the change request. A change request can have a status 

of: New, Assigned, Design, Testing, etc.) 

The priority of a change request. 

The classification of the change request. 

Manager of assigned IT Area 

Developer assigned to change request 

Date scheduled to move change into production. 

Actual date change is moved into production. 

A short (75 chars max) and concise description of the change request. 
The resolution to the change request. Developers should include a 
brief description of the changes made to the code. Explanations 
should be given for changes that are rejected. 

Indicates whether the Statement of Work or Scope Definition has been 
signed off. 
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User Acceptance 
Testing Checkbox 
Technical / Code 
Review Checkbox 
Complete Portion 
of the present 
description 
Checkbox 
Complete JCL / 
DCL and Programs 
Checkbox 
Submit Turnover/ 
Software Install/ 
Panapt Move 
Distribution List 
Requirements 
Checkbox 
Identify Impacted 
Systems Checkbox 
Capacity Planning 
Checkbox 
Ready to Migrate 
Checkbox 



Indicates whether the User Acceptance Testing has been signed off. 

Indicates whether the Technical / Code Review has occurred. 

Indicates whether the Complete Portion of the present description has 
been provided. 



Indicates whether the Complete JCL / DCL and Programs has been 
provided. 

Indicates whether the Turnover/ Software Install/ Panapt Move has 
been submitted. 

Indicates whether Distribution List Requirements has been provided, 
(i.e. TCPIP, Special Forms, Microfiche, Electronic Files) 

Indicates whether Impacted Systems has been identified. 

Indicates whether Capacity Planning has signed off. 

Indicates whether the change request is ready to be migrated to 
production. 



Use this job aid to assist in completing and maintaining the Project Configuration 
Management. It relates the portion of the descriptions in the Project Configuration 
Management Plan to the processes defined in the Software Configuration 
Management Policy. 



Key: 
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SCMP Software Configuration Management Policy 

SCMP Section numbers from the Software Configuration Management 

Tasks Policy that give more detailed process information 

AT Assembly Test (a.k.a. String Test); where several modules are tested 

in succession 
CM Configuration Management 

CMM Capability Maturity Model 

CT Component Test (a.k.a. Unit Test); where a single module is tested 

ORT Operational Readiness Test; where the production infrastructure is 

verified 

PM Project Manager 

PT Product Test; where the entire system is tested as a whole 

References Other sources of information that may give one more information on 
the process 



Project Configuration Management Plan Walkthrough 

5 Project Configuration Management Plan templates for each platform have been 
created, and sample Project Configuration Management Plans are also available. 

The owner of the Configuration Management Plan (responsibilities include 
monitoring, reviewing, enforcing) is the Project Manager. 

10 



Tab: CM PLAN- Pro j 


Project Information for Configuration Management Plan 


Definition 


Project information - lists key contacts on the project, Project 
Configuration Management Board members, and items to be placed 
under Configuration Management and managed by this plan 
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Purpose 


Capture project-specific contact information, configuration type 

iTiff\fmiitif*n and Pmi Rr*t Pfinfi oiirjition \/f o^m pnt RoarH 

information Tt is imnortant to nortion of the nresent description the 
contacts and responsibilities early in the project so there are no 
misunderstandings, and everyone is in agreement on how 
Configuration Management may be handled on the project. 


Required Fields 


All 


Project/Version 
information 


Responsibility: Project Manager 

Enter project-specific information for this Configuration 
Management Plan: 

Platform: the platform that the project may run on. Should match a 

delivery vehicle, list as "operating system - database system - 

language", (e.g. VMS - Oracle - C, Fortran) 

Project: the project/application name. 

Version: the version of the application, (e.g. 2.0) 

Production Date* the date that the annlication is due in oroduction 

(e.g. Jan 5, 1998) 

Configuration Management Plan Owner: the person who may 


manage and enforce the responsibilities portion of the present 
descriptioned in the Configuration Management Plan. 
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Project Contacts 


Responsibility: Project Manager 




Enter names for the project contacts playing the listed roles. These 




names may automatically populate in subsequent worksheets in the 




Configuration Management Plan according to the Program 




Methodology and CMM requirements. If a role does not apply for 




your project, enter a space in place of the name. If more than one 




person plays a primary role, one can enter both names in the field. If 




a role is not listed, then add it; however, it may not auto-populate 




into the subsequent worksheets. These contacts should be the people 




most involved in the project, who one would consider "key contacts" 




involved in the migration process. 
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To be placed under 


Primary Responsibility: Functional Lead 


Configuration 




Management 


For each category shown, list the configuration types that may be 




covered in the Project Configuration Management Plan. The types 




already listed on the template cover most project needs; verify that 




they cover the specifics of your particular project. These are the 




types that may be migrating through the different environments, are 




subject to review, follow the same approval/migration process, etc.; 




and may populate on to the subsequent Configuration Management 




worksheets. The types should cover the normal situation (think of 




the 80% of the 80/20 rule); exception situations should be noted 




separately. 




Examples for the types: 




Portion of the present description = design, test, data, support, etc. 




Database = tables, indices, views, aliases/synonyms, stored 








Architecture = application requested architecture extensions 




Application = code, reports, screens, menus, etc. 




SCMP tasks: 1 .6.1 Identify configuration types 
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"Project Configuration 


Primary Responsibility: Project Manager 


Management Board 






Confirm the names of the people who may act as the Project 




Configuration Management Board (the names automatically populate 




with contact names listed on the same sheet: Configuration 




Management Plan Owner, Development Lead, Test Lead, Tech 




Lead, Development DBA, Implementation Lead, Operations. The 




makeup of the CM Board can change, if the project deems necessary. 




The CM Board is responsible for portion of the present 




descnptioning the detailed processes on the different tabs and for 




signing off on the Project Configuration Management Plan 




developed. They are also responsible for enforcing processes on 




their teams, and meeting with project management after each major 




project phase to ensure that changes are completed according to the 




nrvrti on of* thp nrp<jpnt Hp^rrintinnpH Plan 




SCMP tasks: 3.6.1 Define control groups; 3.6.2 




Approve/disapprove change requests; 3.6.3 Track/implement change 




request; 4.6.2 Generate/distribute status reports 
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"Meeting Dates" and 
"Meeting Minutes 
Location" 


Primary Responsibility: Project Manager 

Once the Project Configuration Management Plan has been 
established and signed off during Design, Project Configuration 
Management Board meetings may be held. They should be held at 
the end of AT, PT, and Implementation phases - these dates should 
be taken from the project plan. 

These meeting dates should be listed in the "Meeting Dates" column. 
The Project CM Board may meet on the listed dates to review 
progress made on implementing change requests according to the 
CM Plan and on action items ensuring CM compliance. The Project 
Configuration Management Status Agenda ("Status Agenda" tab in 
the Project Configuration Management Plan) can be used to guide 
meeting discussions. Minutes from these meetings may be portion 
of the present descriptioned, and the location of these portion of the 
present descriptions should be entered in the "Meeting Minutes 
Location" column. The PS should communicate the meeting dates 
early in the project to ensure that the meetings may be held on the 
date noted. 

References: Project Configuration Management Status Agenda 

^ kjlalUo rlLgCllLlcl IcLU 111 II 1C V^lVl rldlly 

SCMP tasks: 4.6.1 Maintain records; 4.6.2 Generate/distribute status 
reports; 4.6.3 Schedule CI reviews; 4.6.4 Perform audits; 5.6.1 
Verify security practices 


Tab: CM* 


* = Emer, Doc, DB, Arch, Appl 
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Definition 


Project Configuration Management Plan for the 
Emer = emergency maintenance (responsibility = Development) 
Doc = portion of the present description (responsibility = 
Development, Test), 

LJMJ llCvlCLUcloC CUJC'Clo ^1 CofJUllolUlliLjr 1. Civil OUJJJJ4J11J, 

Arch = architecture extensions (responsibility = Tech Support, 
Architecture), 

Appl = application obiects (responsibility = Development, Test, 
Tech, Impl, Operations) created for the project. 


Purpose 


Identify the objects to be placed under CM and the stages which they 
may go through, identify the repository and version control tool, 
identify the change request tool that may be used, and portion of the 
present description the roles/responsibilities for migrations to the 
different environments. 

It is important to portion of the present description these 
responsibilities so that it is known who needs to sign off on what 
tests, who should have authority to write where, and who is 
responsible for migrations. This may help to ensure that object 
migrations are not missed due to misunderstandings. The green 
WHO columns may automatically populate from the "Project 
Contacts" listed on the CM PLAN-Proj tab according to the program 

llltsLllULiVJiwt^ j VvlVJ.1V A 1 t-LJ L4.ll t/lllt/lllo. 

A new project team member should be able to tell exactly what steps 
to take and who should be involved/notified in order to migrate 
changes from one environment to the next. 


Required Fields 


All 

SCMP tasks: 2.6.2 Define promotion and migration procedures. 
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Objects Included 


Primary Responsibility: 




Portion of the present description tab — Development, 




Database tab - Tech Support, 




Architecture tab - Tech Support, 




Application tab - Development 




However, Test, Implementation, and Information Delivery may input 




into each tab, also. 




This field is pulled from the Objects Included field on the CM 




PLAN-Proj tab. Verify that the list includes all objects that may 




migrate through the environments, follow the same naming standard, 




use the same version control tool, follow the same migration 




procedures, and use the same change request tool. This should be 




the 80% of the 80/20 rule. The exceptions should be listed in the 




Exceptions filed later in the sheet. Corrections to this field should 




be made in the Obiects Included field on the CM PLAN-Proj tab. 




Any other objects (the 20%) that do not follow the Naming standard, 




use the Migration/version control tool, or use the Change request 




tool listed at the top, but do migrate through the development 




* At 111 1 • , 1 • , 1 A.' 59 A. * C a1 

environment should be listed in the Exceptions section of the 




cVippt THp mioration nuth and othpr infnrrriAtinTi ohniilfi hp fillpd nut 

oUt^l. A lit* 1111 i^J. ClllVJll lJcll.ll ullU \J LI Iwl 1111 Wl llldllWll OllUUlVl LJ\* 11 llvVi UUl 




for the exceptions, also. 




SCMP tasks: 1 .6.2 Identify project baselines; 1 .6.4 Identify 




configuration units. 
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"Naming Standard" 


Primary Responsibility: (see "Objects Included") 

List the location(s) of the naming standard(s) used for the objects 
listed. The default Alliance Methodology naming standard is listed; 
any project-specific naming standard should also be listed. This 
should be the 80% of the 80/20 rule. The exceptions (or 20%) 

ollUUXU UC 11S>IC(J 111 UlC IZfA^/CpilLIIld pUI IHJII Ul II1C UCbUI lpiltJIi IdlCi 

in the sheet, with that naming standard portion of the present 
descriptioned. 

SCMP tasks: 1 .6.3 Define naming standards for types 


"Migration/V ersion 
Control Tool" 


Primary Responsibility: (see "Objects Included") 

List the migration and version control tool(s) used. If the tool is only 
used for one of the functions, indicate that as so. If multiple tools 
are used to perform these tasks, indicate this, also. Again, this is the 
80% of the 80/20 rule. The exceptions (or 20%) should be listed in 
the "Exceptions" portion of the description later in the sheet, with 

tVint mi crr^iti nn/vpr<:inn fnnfrnl tnril nnrtinn of" tViP nrf Qfnt 

descriptioned. 

SCMP tasks: 2.6 A Establish platform repositories; 2.6.2 Establish 
backup/recovery scheme 
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"Change Request Tool" 


Primary Responsibility: (see "Objects Included") 

Enter the change request tool used for tracking changes. If multiple 
tools are used, indicate this and when each tool is used. Again, this 
is the 80% of the 80/20 rule. The exceptions (or 20%) should be 
nsieu. in me xjxcepiions puriiun ox me tieacripiioii idler m me 
sheet, with that change request tool portion of the present 
descriptioned. 

SCMP tasks: 3.6.1 Define control groups 


"CM Unit/Environment" 


The phases listed under the gray heading are the standard test phases; 
and the columns to the right apply to the types listed in the "Objects 
Included" field. Exceptions to that should be listed separately in the 
"Exceptions" portion of the description, with phases listed below 
and processes listed to the right. These headings can be changed to 
better fit the project's terminology (e.g. "Unit Test" instead of CT). 

xid.cn ceil 10 me ngni oi me iiaieu pnd&c n<±a guiueimea lur ine 
nroce<*<i to be followed on the nroiect The CTeen AVTIO fields 
automatically populate from the "Project Contacts" on the CM Proj 
tab, according to program methodology and CMM guidelines. 
However, these fields may be modified to fit your particular project. 


Tab: CM Emer 


Emergency Fixes 
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Prod Support 
Production 

f manual mnvp^ 


Primary Responsibility: Development, Tech Support 

Emergency (EM) fixes are fixes that were discovered in production, 
and need to be fixed in production right away. Most of the time, EM 
fixes go through brief testing (due to time constraints), and are not 
migrated through all environments. "Production Support" represents 
the environment where these fixes are made and tested - it is usually 
separate from the development environment. 

Promotion/migration for all objects resulting from an emergency fix 
in production: 

X iUUUl'llOIi OUUUull yE*LVLJ vKJ IT I UU 

ProHnrtion Snrvnnrt TPA/f^ tn f^niri'nnrif'rit Tp^t 

(project should follow migration process defined in "CM Appl" from 
this point) 


Tab: CM Doc 


Portion of the present description 


WIP -> Final 


Responsibility: Development, Test 

Portion of the present description applies to any/all portion of the 
present description produced/updated for the project. For example, 
designs, test conditions and scripts, test data, support procedures, etc. 

Promotion/migration for all portion of the present descriptions for 
the project: 

Work in Progress -> Final 


7a6: CMDB, Appl 


Database objects, Application objects 
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indicates base migration 
level 

CT ^ AT* 
AT PT* 
PX _^ HPT 

PT Training 
ORT -> Production* 
Production -> Prod 
Support 


Responsibility: (Database objects) Tech Support; {Application 
objects) Development, Test, Operations 

Database objects include anything related to the storage of data and 
database objects and functions: tables, views, roles, stored 
procedures, etc. Application objects include anything developed 
specifically for the application: screens, windows, programs (online, 
batch), libraries, etc. 

Promotion/migration for database objects and application objects to 
environments: 

Component Test to Assembly Test 

/Ai>i>CIIlUiy 1 Col UJ riUUU^L 1 Col 

Product Test to Onerational Readiness Test 
Product Test to Training 
Operational Readiness Test to Production 
Production to Production Support 


Tab: CM Arch 


Architecture extensions 
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Architecture - owned 
CT AT/PT 
AT/PT -» QA 
AT/PT Pilot 
AT/PT -> Production 
Platform - owned 
CT^ AT 
AT^PT 

PT OPT 
_ _^ Xrainincr 

ORT -> Production 
Production Prod 

-1 A VJVi HV_/ L Ivy 11 / X 1 

Support 


Architecture extensions are application-specific additions to the 
existing application architecture that are done by the Tech Support 
team. This does not include common code developed by the project 
team — that should be included in the CMAppl tab. 

Promotion/migration for architecture objects to environments 
(owned by Architecture Team) 
Component Test to Assembly/Product Test 
Assembly/Product Test to Quality Assurance 
Assembly/Product Test to Pilot 

Assembly/Product Test to Production (platform development) 
(owned by platform development teams) 
Component Test to Assembly Test 
Assembly Test to Product Test 

.T I U LIU. LA 1 Col lyj V^LJCI allUlldl JXCdUlllCoo ICol 

Product HTV^t to Training 

Operational Readiness Test to Production 
Production to Production Suonort 


Tab: Status Agenda 


Configuration Management Status Meeting Agenda 


Definition 


Template agenda to guide discussion during a Project Configuration 
Management status meeting 


Purpose 


A Project Configuration Management Status Meeting should be held 
at the end of Assembly Test, Product Test, and Implementation. The 
primary goal is to ensure that the Project Configuration Management 

"Plan ic hairier folloix/pH for nil pnancrpQ anH fiIqo to oivf* tVif* nroif*r*t £i 

1 Idll la UCllli^ IL/llLJVVCLl 1VJ1 all LrlldllgCsO, dllll dlovj IU glVC 11 JJlLJJC'l/L <X 

chance to identify areas for improvement and act upon them during 
the project. 

SCMP tasks: 3.6.1 Define control groups 


Tab: Compliance Chk 


Configuration Management Compliance Checklist 
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Definition 


A checklist for projects to use to complete an internal audit on their 
Configuration Management tasks 


Purpose 


Responsibility: all project teams 

Teams should perform internal audits periodically during the project 
lifecycle to ensure that processes are being followed, and that 
Configuration Management tasks have been completed according to 
SCM Policy. This may also help the team to prepare for external 

d.ULllla. IVCL/UIIUIICIUJCU CIlCL/tvpUllllo. dllCI ,T\ooCiIlUiy 1 Col, dlld 

riuuuvi i coi. 

SCMP tasks: 3.6.1 Define control groups 


Tab: Change Log 


Configuration Management Plan Change Log 


Definition 


Change log/audit trail for the Project Configuration Management 
Plan itself. 


Purpose 


Responsibility: all project teams 

Provide an audit trail for changes made to the Project Configuration 
Management Plan after it has been signed off. 



ISSUES TRACKER DATABASE 

5 Figure 83 illustrates a method 8300 for managing issues in an e-commerce 

environment. In operation 8302, multiple types of information are received relating 
to a plurality of issues from a plurality of users. In operation 8304, the types of 
information relating to the issues are displayed in a plurality of fields. Browsing of 
the information relating to each of the issues is allowed in operation 8306. The 
10 displayed information is filtered in operation 8308 based on criterion which includes 
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criterion selected by the users or a predetermined group of criterion for reporting 
purposes. 

Optionally, the criterion may include the predetermined group of criterion for 
5 reporting purposes. Also, the fields may include a date each issue was created, the 
user that requested each issue, a status of each issue, a priority of each issue, a 
description of each issue, a person responsible for resolving each issue, a target date 
for resolving of each issue, and/or a date when each issue was resolved. 

10 As an option, editing of the information relating to the issues may be allowed. As a 
further option, a first type of the information separate from a second type of the 
information may be displayed with editing of the second type of information only 
allowed upon authentication of an identity of an authorized user. As another option, 
the filtered, displayed material also may be printed. The following material provides 

15 a more detailed description of the above-described method. 

The following discussion provides an overview of the Issues Tracker Database for 
use on a ReTA engagement. The Issues Tracker is be used to report development, 
testing, architecture, and infrastructure problem and provide a means for team 
20 leaders and project managers to manage the issue resolution process. 



Issue Lifecycle 

1) New issues are created as they are encountered. 
25 2) The project issue resolution administrator reviews issues and determines 

course of action. 

3) Project management periodically review open issues and approve/reject 
additional investigation and resource requests. 

4) Issues are either completed as either being closed or deferred for later action. 



30 



Issue Responsibilities by Role 
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Role 


Responsibilities 


Tool Section 


Team 
member 


Create a new Issue 


New Issue 


Project Lead 


Review new issues and assign 
accordingly 

Review status of opened issues 
Issues that require change control are 
forwarded into the Change Control 
Proce^ 


Issue Maintenance 


Issue 
Tracker 
Administrat 
or 


Tool Support 


Makes updates/changes to Issue 
Tracker Database 



Tracker Overview 



Main Window 

5 

Figure 83.1 illustrates the Issue Tracker Main Screen 8330. This screen provides 
navigation buttons such as a button 8332 for adding new SIRs, a button 8334 for 
viewing existing SIRs, a button 8336 for viewing/printing existing reports and a help 
button 8338. 

10 

Creating a New Issue 

From the Main Window 8330, select the New button 8332. The New Issue screen 
may be displayed. Figure 84 illustrates the New Issue Screen 8400. All issue 
15 requests with status of New can be reviewed. The status is shown in the Issue Status 
field 8402. To look at other newly submitted issues, scroll through the record 
numbers 8404 (located in the bottom, left-hand corner). 



To complete the form, do the following: 
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Select the appropriate Priority 8406, Phase 8408, Type 8410 and 
Originator 8412 from the list boxes. 

Enter a title for the issue within the Summary entry field 8414. 

Enter a detailed description of the problem within the Description entry field 

8416. 

Select the Close button 8418 to return to the main window. 



Reviewing and Modifying Existing Issues 



10 From the main window, select the View button 8334 of the Main Window 8330 

shown in Figure 83.1. This may display a window similar to the New Issue screen, 
however it is possible to scroll through all existing Issues using the Record control 
8500 located in the lower left portion of the window. Figure 85 illustrates this 
Modify Issue Screen 8502. 

15 

To search for a specific Issue, click on the field containing the data to search by and 
then click on the Find Issue button 8504. Enter your search criteria when the 
prompted. The resulting Issues should comply with the search criteria. Advance 
through the retrieved records using the Record control. 

20 



Team & Project Lead Administration 



Typically it may be the Team Lead's responsibility to review and assign Issues to 
25 individual developers. To do this, simply type within the desired fields or select the 
appropriate options from the list boxes. Pressing the Close button or advancing to 
another Issue may commit the changes. Pressing the Escape button may cancel 
changes. 



30 



Printing Reports 
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From the main window, select the Report button 8336 of the Main Window 8330 
shown in Figure 83.1 . This may display the Report Selection Screen. Figure 86 
illustrates the Report Selection Screen 8600. 

5 Select the appropriate criteria for the desired reports and select the Display button 
8602. This may provide a view of the report from which it is possible to create 
printed copies of. To print a report, select the Print button 8604. To return to the 
main window select the Close button 8606. 

10 PERFORMANCE MODELING 

Figure 87 illustrates a method 8700 for network performance modeling. Factors that 
influence a performance of a network are first identified in operation 8702. In 
operation 8704, a model is developed to simulate the performance of the network 
1 5 based on the identified factors. Operation of the network is simulated with the 

model in operation 8706 with the simulation being carried out using expected future 
loads. The network is then designed in operation 8708 based on results of the 
simulation in order to accommodate the expected future loads on the network. 

20 The factors may include such things as transaction load, network load, network 

utilization, error rate, network usage profile, maximum utilization, peak transmission 
rate, peak transmission time, quantum, utilization spike, and/or benchmark. The 
factors may also include bottlenecking. Optionally, applications of the network may 
be designed to accommodate the expected future loads. Similarly, the simulation of 

25 the operation of the network with the model may include identifying initial response 
time estimates based on the expected future loads. 

Further, the network may be a local area network (LAN). Network drivers, a 
network interface card, an Ethernet hub, an Ethernet bridge, a switching hub, a 
30 router, and a token ring hub of the network would be designed to accommodate the 
expected future loads. Alternatively, the network may be a wide area network 
(WAN) in which a router, a frame relay public data network, a gateway, and a front 
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end processor of the network are designed to accommodate the expected future 
loads. The following material provides a more detailed description of the above- 
described method. 

5 The ReTA Performance Modeling portion of the present description outlines the 
evaluation process and Analysis of a performance modeling infrastructure. It may 
discuss the selection approach, the product requirements, and the evaluation of the 
products, in order to obtain a final recommendation. Figure 87.1 illustrates the end 
to end process associated with Performance Modeling. Components include 
10 Performance Modeling Analysis 8730, Product Evaluation 8732, and Tool 
O Recommendation 8734. 

ill 

% Net-Centric and other advanced computing paradigms have brought about an 

O entirely new generation of advanced business applications. These distributed 

£T 15 applications place tremendous demands on the network. Corporate computing 

;L networks must endure the effects of increased usage, multiple protocols, 

SI heterogeneous networking hardware and software, a variety of application 

~ performance profiles, and a distributed user base. Designing and implementing high 

© performance applications on distributed networks today can be challenging. This is 

~ 20 especially true in regions that are characterised by limited WAN bandwidth, 

generally poor communication infrastructures, and distributed environments, such as 

EMEAI. 

Moreover, end-user performance expectations are becoming increasingly more 
25 demanding, requiring the network to be designed, sized, and managed with 
performance in mind. New networking technologies are claiming confusing 
performance characteristics. Technology industry benchmarks provide only minimal 
insight into true effective performance. Performance measurement standards are 
currently in a state of flux. And performance management tools themselves may 
30 provide only limited assistance in predicting and monitoring network performance. 
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The result is a complicated situation for approaching, understanding, predicting, and 
analysing network performance in network intensive applications and computing 
infrastructures. This portion of the present description may identify the elements of 
network performance management, presents a network performance product 
5 evaluation, and outlines necessary network performance activities, strategies, and 
design considerations in order to produce a high level recommendation and 
implementation strategy. 

Performance Management Principles 

10 

Basic Concepts 

The term network performance management broadly covers many different concepts 
that are used to evaluate and improve the capabilities and utilization of network 
15 resources. This portion of the description provides a foundation for understanding 
network performance management concepts. Understanding and implementing 
these concepts promotes effective network performance management. Benefits of 
effective network performance management include: 

• Response time improvement 

20 • Reduction of telecommunications costs due to optimized line utilization 

• More flexibility in the application architecture 

In order to achieve these benefits, effective network performance management 
requires the right application performance design, the right resources and 
25 technologies, and the right plans and approaches. 

Network Performance Management involves several activities. These activities 
cover stages in the planning, designing, monitoring, analyzing, and tuning of 
networks. Figure 88 illustrates the area 8800 of Effective Network Performance 
30 Management that occurs where the right application performance design 8802, the 
right resources and technologies 8804, and the right plans and approaches 8806 
overlap. Effective network performance management requires people, processes, 
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tools and knowledge. Effective network performance management yields the 
optimal performance of network resources in order to meet the business needs. 

Network Performance Management Tools are designed to simulate, test, monitor, 
5 and analyze the different elements of network performance. Tool functions, 

categories, limitations, and numerous products are discussed in detail later in this 
portion of the present description. Note that tools at best provide only a component 
to successful network performance management. 

10 Performance Measurement involves the determination of network performance 
based on metrics, such as those defined later in this portion of the description. 
Performance measurements are often needed to verify performance level agreements 
are met and to analyze bottlenecks in the network operation. Note that no single tool 
today can provide comprehensive end-to-end measurement of all components in 

15 distributed client/server networks. As there are a large number of components 

involved in today's corporate networks, detailed performance measurement can be 
both complicated as well as time consuming. This should be considered when 
defining performance agreements. Aids to performance measurement include 
software and hardware monitors. 

20 

A generic network performance analysis is presented towards the end of this portion 
of the description. This highlights the complexity involved in performance 
measuring. 

25 Terms and Definitions 

These terms describe network performance from a user perspective. A Bottleneck is 
the point in a system where capacity is lower than at surrounding points. In data 
communications networks there are normally multiple bottlenecks. A system or 
30 network is limited by the performance of the slowest bottleneck. 
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Price/Performance Index is a general term used to define the performance 
characteristics of a component relative to the cost. Generally, performance is 
considered directly proportional to price, the better the performance the higher the 
price. With the range of WAN service alternatives and advanced technologies today, 
5 it could be beneficial to investigate this index in detail. When analyzing 
price/performance indexes, it is important to have a clear definition of what 
performance is required. Often, performance increases more rapidly than price, thus 
a high performance ATM network may cost much less per megabit than a 64 Kbps 
X.25 connection. However, if only 64 Kbps of bandwidth is required, then the X.25 
10 option may be much less expensive. For a given set of requirements there may 
normally be numerous options. The price of these options often varies widely 
depending on such factors as region and carrier strategy. 

Response Time is the time from when the user presses a key to perform a function 
15 until the response appears on the screen. It is the cumulative result of all the 
individual response times of each of the network components, as well as the 
application and other components. Several network components are involved in 
aggregate response times. A response time analysis example below reveals the 
various factors of influence in a large client/server banking application. 

20 

The following table illustrates an Engagement Response Time Analysis. 



Start- 


Load 


APPC 


Service 


APPC 
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GUI 
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9% 


26% 


7% 


30% 


7% 
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9% 



10 



30 
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Reliability refers to the probability that a system may not fail during a given time. It 
is often expressed as Mean Time Between Failures (MTBF). 

5 Serviceability is the length of time that is required to repair a network component. 
It is often expressed as Mean Time To Repair (MTTR). 

Availability is the percentage of time that the system is available to users. It can be 
expressed in terms of the reliability and serviceability: 



Availability - 



MTBF + MTTR 



However, this formula does not account for two important aspects of availability: 
• Scheduled unavailability 
15 • Number of users affected 

The impact of unscheduled outages can be significant. Likewise scheduled outages 
of shared network resources can also be significant. On any network, it is difficult to 
notify all users of all scheduled outages. Thus, for these users scheduled downtime 
20 is effectively unscheduled downtime. Also, many users or applications may not be 
willing or able to alter their schedules to that of the network. Therefore, availability 
should be analyzed in terms of both the unscheduled unavailability as well as the 
scheduled unavailability. 

25 The number of users affected and the business impact of affecting those users should 
also be considered. If the area of impact is limited to a single workgroup, then 
outages may be more acceptable than for an entire office. 



Network Terms 



These terms describe the performance qualities of various network components. 
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Bandwidth is the rated speed of communications lines or links, normally expressed 
in bits per second (bps). This is typically the first factor that is considered in 
network performance management. A lack of adequate bandwidth decreases 
5 response times. Bandwidth is also referred to as line speed or, as a general term, the 
capacity of the system. 

The following table outlines the bandwidth of common WAN links: 



Class 


Bandwidth in Bits 
per Second (bps) 


Bandwidth in 
Bytes per Second 
(Bps) 


Tl 


1.544 M 


193 K 


El 


2.048 M 


256 K 



10 

In the table Mbps refers to one million bits per second and KBps refers to one 
thousand bytes per second. Performance analysis generally first requires converting 
bandwidths between bits and bytes to analyze application data throughput. 

15 Latency is typically the second most important quality considered after bandwidth in 
performance analysis. Latency is the time delay from delivery of the first bit of the 
packet to the network until the receipt of the last bit of the packet at the destination. 
A satellite link may have a line speed of 5 12 Kbps, but a latency of half a second. 
This means that it takes half a second for a signal to travel from the sender to the 

20 satellite and then to the receiver. From a performance standpoint, latency may add a 
delay in the response time of all applications. Latency is particularly important to 
consider in interactive applications. In batch applications the latency may not be as 
critical. If a packet crosses the network in a relatively short period of time, it is said 
to have low latency. High latency occurs when packets take long periods to cross a 

25 network. Latency is also referred to as propagation delay and network response. 
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Latency is often dependent on the type of data that is being transmitted. Data can be 
broken up into two types: isochronous and plesiochronous. Isochronous data has a 
Constant Bit Rate (CBR) and must be transmitted through regular discreet intervals 
such as voice and video. Plesiochronous data is not constant; it has a Variable Bit 
Rate (VBR). Examples of this type include file transfers and most types of LAN 
traffic. Note that although a voice transmission requires minimal bandwidth, it has a 
constant bit rate requiring low latency. 

Serialization is a network quality that reveals the degree to which low bandwidth 
can cause high latency. When a network device, such as a switch or a router 
receives a packet, it reads in the whole packet then processes and forwards it. Low 
speed links may cause a delay, as the network device has to read in the packet in 
serial, process it, and then send it out in serial. In higher speed links, devices may be 
able to process packets faster, with less of a delay. Small packet sizes may also 
decrease the time it takes to read in a packet. This serialization is the delay that is 
caused while reading and sending the packet. 

The following equation outlines the serialization time for a single link 

Sbits I Byte x Number of Bytes I Packet 
BW 

ST = Serialization Time 

BW = Bandwidth in bits per second 

For example, the serialization time for a 512 byte packet is: 



Bandwidth 


Serialization Time 
(ST) 


ST in seconds 


9600 bps 


427 milliseconds 


A seconds 


64 Kbps 


62.5 milliseconds 


.06 seconds 


1.544 Mbps 


2.65 milliseconds 


.003 seconds 




Serialization delay is more notable when a packet travels through multiple network 
devices (routers) to reach its destination. Each "hop" may have a serialization delay 
associated with it. The equation below represents the total serialization delay for a 
network: 

5 

Total serialisation delay = [(— )(w + 1)] + (— ) 

b b 

p = packet size 

n — number of nodes 

b = bandwidth of the line 

r = remaining number of bits to be delivered in mesage 



For example, if a 200 Kbit (25 KByte) file is transmitted through four nodes of an 
X.25 network composed of 56 Kbps trunks, using 1024 bit (128 Byte) packet sizes, 
1 0 the serialization delay would be: 



<-* < r / 1024 , /A ,198976, 

3. 64 seconds = [ ( )(4 + 1)] + ( ) 

56000 56000 

p = 1024 bits (128 bytes) 
n~4 nodes 

b = 56000 bits per second 

r = 198976 bits = 200000-1024 



However, if a packet size of 200 Kbit (25 KByte) is used, the packet must be 
15 processed in entirely by each switch before it can be sent to the next switch, this 
causes a delay of: 



1 7. 86 seconds - t(™™)(4 + 1)1 + <-°-) 
56000 56000 

p = 200000 bits (25 bytes) 
n = 4 nodes 

b = 56000 bits per second 
r = 0 bits = 200000-200000 



20 



Since line speeds are generally much slower than processor speeds, the serialization 
delay at each node is a major component of network latency. Fragmenting user data 
into small packets introduces pipelining if packets pass through several nodes. 
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Pipelining is when multiple devices are each working on a part of the transfer. For 
example, multiple switches are simultaneously working on a different packet in the 
file transfer. This improves end-to-end response time, because the switches are 
working in parallel. 

5 

The calculations above assume that the time for the switch to process the packet is 
effectively zero. Although the line speeds are typically much less than the 
processing speeds, this assumption may not be valid for some environments. The 
processing time is normally different for different packet sizes. It takes longer to 
1 0 process larger packets. 

Serialization delay can be a significant factor in designing large internetworks. 
There are different ways of decreasing serialization delays: 

• Decrease packet size 

15 • Increase bandwidth between switches 

• Increase bandwidth between customer equipment and switch 

• Decrease number of "hops" 

Note that serialization can occur in switches as well as in any other devices that 
20 processes packets, such as routers or gateways. Serialization delays should be 
considered early in the network design phase. 

Packet, Frame, Cell, Message, and Protocol Data Unit (PDU) all define a 
"fragment" of data. When applications send data across the network, the data is 
25 broken up into manageable pieces. Each of these terms describe these fragments. 
Technically, each term has a slightly different meaning, depending on its context. 
Unless otherwise noted, the term packet may be used generically to mean a 
"fragment" of data. 

30 Overhead. Each of the data packets must contain addressing and other control 
information. From a performance perspective, this additional information is 
generally referred to as overhead. Overhead is generated at each of the different 
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protocol layers that a packet passes through. Some of these layers correspond to the 
OSI Model. There may be other overhead associated with middleware that does not 
occupy a discreet OSI layer. 

For example, a synchronous data connection uses 8 bits for each byte. An 
asynchronous connection also uses 8 bits for each byte as well as a start and a stop 
bit. An asynchronous connection therefore has 20% overhead before analyzing any 
of the upper layer protocols: 



1 r\ 8 bits of data nnn , _ 

1 0 J - = 80% Throughpu t 

8 bits of data + 2 bits overhead 



2 bits of overhead „ nn/ ^ 

J ■ = 20% Overhead 



8 bits of data + 2 bits overhead 



Each of the layers through which a packet passes adds another component of 
1 5 overhead to the packet. As shown below this can result in a significant amount of 
overhead. Each layer adds a header and possibly a trailer that contains information 
for the corresponding layer at the destination. Figure 89 illustrates an example of 
overhead introduced at lower layers. Such layers include an application layer 8900, 
a presentation layer 8902, a session layer 8904, a transport layer 8906, a network 
20 layer 8908, a data link layer 8910, and a physical layer 8912. 

Inter-packet Gap is the time lapse between the sending of packets on the network. 
When data is packaged and overhead addressing and control data added, it is 
possible to send packets independently of other packets. The delay between sending 
25 packets is referred to as the inter-packet gap. Some protocols mandate delays 

between packets. From a performance perspective, this delay is considered negative. 



30 



For example, Ethernet requires that after a packet is transmitted by any station on the 
network, every station must wait a random amount of time before it can transmit. If 
there are many stations on the network and two stations wait the same amount of 
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time, a collision may occur when they both try to transmit. The collision may force 
all stations to wait again, thus degrading performance. The effective throughput of 
Ethernet is therefore much less than its rated bandwidth of 10 Mbps. 

5 Traffic Profile refers to the combination of protocols and applications that a 
network supports. The traffic profile has significant effects on network 
performance. For example, batch file transfers typically do not perform well when 
mixed with voice over the network. Large batch file transfers tend to require much 
of the available bandwidth. Voice communication only requires a small portion of 
10 the bandwidth, but continuously. If a file transfer is delayed by a second, the effect 
is negligible. However, if a voice communication has even short delays, it is 
disconcerting to the users. Traffic profile is also referred to as traffic mix. 

Packet Size is the length of each packet. Generally, it is a configurable parameter. 

1 5 This includes both a data portion and an overhead portion. Overhead is generally a 
fixed size for each packet, thus larger packets have a lower proportion of overhead. 
Packet size also has other performance effects. To lower the overhead proportion, 
the largest packet size should be used. However, there are several reasons for using 
a smaller packet size, such as to decrease the serialization delay. There are many 

20 other factors influencing the optimal packet size. 

Message Size is the length of messages sent by the applications. For example, an 
interactive terminal application normally sends relatively short messages, each 
consisting of a single keystroke, whereas a client/server file transfer application 
25 might send larger messages each consisting of a portion of the file. Ideally, from a 
performance perspective, message size should be configured to fit within the data 
area of the packet size or integer multiples of the size of the data area. 

The message size has a direct affect on performance and response time. It is 
30 normally a configurable parameter within the application accessing the network. 

Identifying the optimal message size for an application and network is a key activity 
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in performance management. The example below illustrates the effect message size 
and number of users has on response time. 

Effective Throughput is the "true" bandwidth that is available to an application 
after all the overhead, inter-packet gaps, and other factors are considered. The 
effective throughput can be used to identify the performance of different 
components. For example, the effective throughput of an Ethernet LAN is different 
from the effective throughput of a file transfer over an Ethernet LAN. Effective 
throughput is always much lower than the rated bandwidth. The effective 
throughput of Ethernet and FDDI are much lower than their rated bandwidth as 
illustrated in the table below. Note that the effective throughput is dependent on the 
network configuration, however, these numbers represent an average. The following 
table illustrates Effective Throughput. 



Transmission Media 


Effective 
Throughput 


Ethernet 


300 KBps 


FDDI 


2MBps 



These are the effective throughputs of the lower level media services, the effective 
throughput of the applications using these services may be much less, because of 
additional higher layer overhead, inter-packet gaps, and other delays discussed 
above. For example, one test of an FTP file transfer over a shared Ethernet provided 
only 15% effective throughput versus rated bandwidth. 

When discussing bandwidth and other performance related terms it is important to 
clearly define them and obtain agreement between project members and client. For 
example, it should be determined if the client is referring to absolute bandwidth, the 
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effective throughput of the media service, the effective throughput of the application, 
or something else. 

The "absolute" bandwidth of FDDI is 250 Mbps. Theoretically, this is accurate, 
5 because the actual clock speed of FDDI is 125 MHz. Each of the two FDDI rings 
can be used simultaneously, making it possible to send 250 Mbps. However, FDDI 
is commonly said to have a bandwidth of 100 Mbps. This is because only one ring is 
used in practice to transfer data and 25% of that is overhead. FDDI uses a 4/5 
signaling scheme, it takes five bits to represent four bits of data, a 25% signaling 
10 overhead. 

Network Metrics 

These are common terms used when measuring the network performance. 

15 

Transaction Load is the number of bytes of data that are required to process a 
business transaction, including all associated overhead. The load includes both the 
number of bytes sent in a request as well as the number of bytes sent in response. In 
order to determine the transaction load, the request frequency must be determined 
20 over several time periods. The transaction load is a function of the number of bits 
per time period. The following equation offers a mathematical representation of a 
transaction load. 

X 

TL = ^S«f»(t) 

n=l 

x = Total number transactions 
Sn = Size of transaction (n) 

fn = Number of transactions of type (n) at time (t) 

25 

For example, the transaction load generated by transaction T during time period P is: 

TL = Sizeof(T) * Number of T x s during P 
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The sum of all the transaction loads for a given period is the total transaction load. 
Each transaction for each application must be analyzed to determine its size and the 
number of times it occurs during each period. This estimate is a valuable input into 
5 the capacity planning and performance planning activities. 

Network Load is a function of the total transaction load. It can be expressed with 
the following equation. 

10 NL^TL/ Period 

The network load is a function directly proportional to transaction load for a specific 
period. The following example considers loads during the time period between 
8:00am and 9:00pm: 



15 





Transaction 


Size in 


No. Of 


TL 






bits 


Transactions 






Login 


100000 


100 


10,000,000 




Query 


100000 


100 


10,000,000 




Response 


400000 


100 


40,000,000 




Total Transaction Load (in bits) 


60,000,000 



Based on the above data, network load would then be: 
16,6676/>s=60,000,000 bits/5600 seconds per hour 

Network Utilization is a function of network load. It represents the percent 
utilization of the network. It is expressed mathematically as: 



NU=NL I Bandwidth 

25 
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Using the example above for a 64 Kbps link, the network utilization would be: 

26%=16,667bps/64,000 bps 

5 Error Rate measures the effective accuracy of the network transmission. This rate 
is directly dependent on the WAN service and LAN infrastructure. In addition, each 
country's telecommunications infrastructure influences error rates. Error rates 
normally vary with time of day. 

10 A Network Usage Profile can be represented graphically by network utilization 
versus time. Figure 90 is a graph depicting a Network Usage Profile showing a 
percent utilization at times of the day. Developing and analyzing a network 
utilization graph can help assess network performance. Comparing network 
utilization graphs over time highlights the traffic growth. This can be used to predict 

15 future network performance and identify problem areas. 

Maximum Utilization is the maximum network utilization that a network can 
effectively provide. Network services provide a maximum utilization that is less 
than the rated bandwidth. For example, the maximum utilization of Ethernet may be 
20 30% for some network configurations. 

Peak Transmission Rate is the highest network utilization level. 

Peak Transmission Time is the time that has the highest network utilization. The 
25 network peak transmission time and the peak network utilization must be considered 
when sizing the network. 

Quantum is the length of the peak transmission time. It is commonly referred to as 
"peak periods' 1 . It is also valuable to determine these periods for network sizing, hi 
30 applications where there are "bursts" of traffic it may be necessary to consider a 
smaller quantum to reflect true network requirements. 
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A Utilization Spike can occur when network usage increases dramatically within a 
short period of time. For example, one cause of this occurs when multiple batch 
jobs are all set to run at midnight. This may cause a spike when all the jobs attempt 
to begin operation and transmit data across the network. LANs can experience 
5 spikes in the morning hours when users typically log on. Applications such as NFS 
also are common causes of network spikes, specifically referred to as NFS spikes. 

Benchmark refers to an actual performance level experienced in a business 
environment. Benchmarking is a common activity in the design, analysis, and 
10 installation phases. It assists in understanding the anticipated performance levels 
before production rollout. 

Performance Analysis 

Figure 91 illustrates a Network Layout with several network components labeled (a, 
15 b, c, etc. and corresponding to the example below). The following example 

illustrates the first step in network performance analysis, identifying the factors 
influencing performance. A full network performance analysis requires the 
following procedures: 

20 • Identifying factors that may influence the performance of a system 

• Developing a model to simulate a network's performance characteristics 

• Modeling the network based on expected loads 

• Extracting model results in order to plan and design network and applications 

25 This example identifies only some network components and performance elements. 
However, it is intended to highlight the complexity involved in network performance 
analysis. 



30 



LAN Components 

A. Network drivers 

network access. 



- This is software within the workstation that controls 
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B. Network Interface Card (NIC) - This provides physical access to the 
network. It consists of a hardware card and software drivers. 

C. Ethernet hub - This is a central point or concentrator of network 
connections. This Ethernet LAN is physically configured in a star topology and 

5 logically configured as a bus topology. 

D. Ethernet bridge - This segments traffic based on the Ethernet address. 

E. Switching hub - This is configured in a star topology. 

G. Router - Ethernet interface. 

K. Router - Token Ring interface. 
10 L. Token Ring hub - This is also known as a Media Access Unit (MAU). The 
Token Ring is physically configured in a star topology, but logically configured as a 
ring. 

O Ethernet - This is configured physically and logically in a bus topology. 

15 WAN Components 

H. Router - CPU. 

I. Router - Frame Relay interface. 

J. A Frame Relay Public Data Network (PDN) - This provides the WAN 
service to connect one location to another. A service provider supplies the PDN. 
20 Examples of service providers are: the national PTT (for example, France Telecom), 
British Telecom, AT&T, Sprint, or the local RBOC. In this network the Frame 
Relay PDN forms the backbone and the WAN link (n) is a link to a branch office. 
N. Another form of wide area link - This is a dedicated circuit. 

25 Other Components 

F. This is a gateway that connects the routed internetwork to the SNA-based 
mainframe. 

M. This is the Front End Processor (FEP) - This handles communications for 
the network. 



Performance Example 
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Measuring network performance can be difficult even in the simple network 
described here. For example, consider a user in Atlanta entering an order request 
from their workstation to the Chicago mainframe order fulfillment database. 



The actions described here are meant to be representative user actions. For the sake 
of simplicity, some actions have been omitted. 



Action 


Component 


Performance 
Implication 


T T^pr A nrpQ^p^ <PTitpr> on tnpir ^010 tpiminjil 

emulation program to send the order request to the 
mainframe 

111 CIA X i, 11 C-U IlWi 


T Tqpt 




The terminal emulation program sends a message 
with the screen data to the network software 
running on the workstation 


Network 
drivers (a) 


Latency 


Message is inserted into a packet with header and 
control information addressed to the SNA 
Gateway. 


Network 
Drivers (a) 


Latency, Overhead 


This packet is then placed into a packet with an 
Ethernet header. 


Network 
Drivers, NIC 
(a,b) 


Latency 


This Ethernet packet is then sent over the 10 
Mbps Ethernet LAN to the SNA Gateway. 


NIC, LAN (b, 
c) 


Latency, Bandwidth 


The Ethernet bridge receives the packet, 
determines that it needs to be forwarded on and 
sends it to the Ethernet switch. 


Bridge (d) 


Latency 


The Ethernet switch receives the packet, 
determines which device it is destined for and 
sends the packet directly to the SNA Gateway. 


Ethernet 
Switch (e) 


Latency, Bandwidth 
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Action 


Component 


Performance 
Implication 


The SNA Gateway receives the Ethernet packet 

unH ?tnn<\ tVip PtViPmpt ViPJidpfQ 

d.1 l\J. OlllLFO lllw J-^lll&lllVVl UWaU&l 


Gateway (f) 


Latency 


The SNA Gateway determines the message is 

HpQtinpH for thp mainfraTYiP anH ntappQ thp 

UvOllllvU 1\JL lilt* 11KX111JL1 CUilt/ dllvl Ulal/WO lilt/ 

message in a TCP/IP packet directed to the 
Mainframe. 


Gateway (f) 


Latency 


^^TA fratpwav nptwrtrW cnfru/nrp qptiHc nnplfpt to 
Oli/i, VJaL&wciy iicivvvJiiv oviiwoiw ouiiuj ljciv^ivv^ i iu 

Atlanta router via the Ethernet switch. 


Oatewav NIC 
LAN (f, e) 


T atpnpv RanHwidth 

j^fdi^/iiv^ y , ucuiu vv i vi in 


Router Ethernet interface receives packet, strips 
Ethernet header, and sends to router CPU for 


Router 
Ethernet 

Tntprffirp ( &\ 

JillvllClvv I t 1 


Latency, Bandwidth 


The packet's TCP/DP address is compared to a 
routing table that the router maintains. Router 

f^PT T HppiHpq to cptiH trip mipVpt out via T^rninp 

Relay interface. 


Router CPU 
GO 


Latency, Bandwidth 


The TCP/IP packet is packaged into a Frame 

ivciay pdOivCi wiui 111c dppiupiidic iriaiiic ivcidy 

address. 


Router Frame 

Rplav 
rvcidjf 

Interface (i) 


Latency, Bandwidth 


The packet is then switched through the Frame 

T? plav nplAx/orlr atiH HplivprpH to tViP C^V\\c^toc\ 

IVCldy 11CIWU1A. Clllll UdlVwlC/U LVJ tilt/ V^-i 11 V^d^W 

router. 


Frame Relay 

Nptworlr (\\ 

1 > l VY \JL IV \J J 


Latency, Bandwidth 


The Chicago router Frame Relay interface strips 
the Frame Relav header information and sends 

tllv X 1 i4illV X X.^/ J. ^*_T * JlX^***V»%^L llllvllllUilvll VW-LAXAW 

TCP/IP packet to the router CPU. 


Router Frame 
Relay 
Interface (i) 


Latency, Bandwidth 


Chicago router CPU refers to its routing tables 
and determines that the packet is destined for its 
Token Ring interface. 


Router CPU 
(h) 


Latency, Bandwidth 



• 
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C*Vi\c?toci roiitpr'^ TnVpn Rinf* intprfacp add^ a 

Token Ring header and sends the packet to the 
FEP. 


Router Token 
Ring interface 

00 


Latencv Bandwidth 


PapVpf rrn^QPQ thp Tnlcpn Rinp IVf AT I to ppt to thp 

FEP. 


MAU/LAN (D 


T,at en c v B an d wi dth 


The FEP receives the packet, strips the TCP/IP or 
LU6.2 header information and forwards the 
message to the mainframe. 


FEP (m) 


Latency, Bandwidth 


The mainframe processes the message and sends 
the response back to user A reversing all the steps 
above. 


All 


All 



This simple action of updating a screen illustrates that there are numerous network 
components that can affect performance. For example, if there is a collision on one 
of the Ethernets, the network driver software must pause and try again. The routers 
5 have to process the packet and may be slow to forward it. The Frame Relay network 
has much lower bandwidth than the Ethernets and it may take longer to send the 
packet. If the Frame Relay becomes congested it may drop the packet entirely and 
then it would have to be retransmitted. The gateway or the FEP may be slow and 
may be processing other packets. 

10 

The goal in a network performance analysis is to: 

• Identify factors of influence 

• Identify the bottlenecks 

• Develop initial response time estimates based on expected load 

15 

Applications 



20 



The business needs of the applications should drive the network performance level 
requirements. The applications should be considered when analyzing network 
performance requirements. Applications can be designed to make optimal use of the 
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network. This chapter offers unique application considerations for several network 
intensive applications. 

Effective throughput of the applications, user response time, and availability are key 
5 factors in analyzing network performance. These factors determine how the 
business user views the performance of the network. Most other performance 
characteristics may be attributes of these factors. 

Observations 

10 

The following general observations should be considered about performance 
management. 

• Effective network performance management can be a complicated 

15 process. Networks using the same technologies, the same standards, and the same 
designs can have three different performance profiles. Each client therefore has a 
unique situation to address performance. 

• A key success criteria is to mutually understand the terms, concepts, and 
20 issues. Network performance is often defined by many different terms and 

benchmarks. These terms and benchmarks are often defined by vendors attempting 
to differentiate their products. Likewise, the performance issues can be complicated 
and it is valuable to have client awareness. 

25 • Network performance management is an iterative process. The optimal 
network configuration may change as the applications, network usage, technologies, 
and procedures change. Network performance management must be ongoing before, 
during, and after installation. Any change to network applications or usage can 
greatly influence network performance. 

30 

• Identifying "bottlenecks" is a key to obtaining maximum network 
performance. 
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• The OSI Reference Model can be used to understand how each of the layers 
adds another level of overhead. 

• Client awareness of potential performance issues early in the engagement is 
key to providing effective network performance management. 

ReTA Product Evaluation 

Network performance management tools provide various performance planning, 
designing and managing capabilities. These tools range from extremely complex to 
rudimentary in functions and operations. Tools from all network performance 
management categories and complexity levels are presented in this portion of the 
description. 

State of the Market 

Legacy systems performance management tools are relatively well developed and 
provide a robust set of tools that manage all aspects of mainframe systems and 
communication networks. However, these existing legacy tools do not provide the 
same capabilities today for distributed networks supporting client/server and 
multimedia applications. It is important to understand the tool market before 
selecting an NPM tool. The state of the tool market can be summarized as follows: 

• The client/server tools do not provide the mature and robust functionality of 
the legacy systems tools. 

• Distributed systems are generally based on multiple vendor products and thus 
require management tools from a variety of vendors for full network 
performance management. Over the next few years, this situation may 
change as vendors cooperate and standardize through such associations as the 
Universal Measurement Architecture (UMA). 

• The major legacy system management vendors are migrating their current 
products onto client/server platforms or developing new products to provide 
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10 



comprehensive tools that meet the different client/server and distributed 
environment needs. 

• A number of different tools must be used to perform the full suite of network 
performance management functions in modern corporate networks. These 
include measuring, testing, monitoring, and simulating tools. 

• Tools provide only limited and questionable information to network 
performance management personnel. 

• It is difficult to classify tools into categories, as features and categories 
overlap. 

Tool Categories 



"« There are several network performance management related tools on the market 

Q today. The top four tool categories are: network traffic analysis 9200, drawing and 

M 15 documentation 9202, baseline and discovery 9204, and modeling and simulation 

JL 9206. Figure 92 illustrates how the four tool categories relate to each other. 

p Network Traffic Analysis 

™f A traffic analysis tool provides insight into the traffic patterns on a data network. It 

20 collects data, analyzes it, decodes the information and summarizes information in 
graphical and/or report format. 



Recommendation 

A protocol analyzer is the most versatile type of network analysis tool. It is a key 
25 tool for network baselining, testing, troubleshooting, and monitoring. Every 

Network Solutions analyst and consultant should be familiar with and have access to 
this type of tool. Software based protocol analyzers do not require any specialized 
hardware and therefore are economical enough for a wide distribution within the 
global Network Solutions practice. 

30 

Sniffer Basic from Network Associates is the best software based protocol analyzer 
evaluated for this project. It provides a full range of features and had the most 
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detailed decode and filtering features of the tools tested. Its user interface is both 
user friendly and elegant. The same user interface may be used for the next release 
of Network Associates' high-end protocol analyzer Sniffer Pro, which is the most 
widely used protocol analyzer. Personnel may be able to build protocol analysis 
5 skills while using Sniffer Basic, which may be directly transferable to Sniffer Pro, 
the analyzer they are most likely to encounter at a client site. In addition Network 
Associates offers upgrade protection for Sniffer Basic so that in those situations 
where a higher-end tool is required, it can be upgraded to Sniffer Pro without 
sacrificing the investment in Sniffer Basic. Sniffer Basic should be purchased in 
10 quantities so that a copy can be loaned to Network Solutions projects that request a 
copy. 

Tivoli from IBM is the first real enterprise security solution allowing the consistent 
definition, implementation and enforcement of security policy across the entire 

15 network computing environment - from data center to the desktop. In all the tools 
tested, Tivoli takes the most hands-off approach to native operating system security 
however, customization is required based on the size of one's infrastructure. Tivoli 
from IBM offers a full range of product that gather control over system resources 
(files, directories and system processes) in adds them into a common database, 

20 which is abstracted from the host operating system. 

Optimal' s Application Expert is a unique product that can significantly increase the 
speed at which application benchmark and performance testing can be accomplished. 
It can be used to quickly capture all of the application data needed for network 
25 capacity and performance analysis. It also provides a simple analytical response 
time prediction and "what-if ' features. Application Expert is a focused tool that 
would only be used during the testing phase of a project. 

Baselining and Discovery 

30 

Baselining and discovery tools are used to get information about the current state of 
an existing network for a network baseline. Baseline analysis is starting point for all 
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types of network analysis. It can be used to determine the "normal" state of the 
network, as a benchmark to analyze troubleshooting data against, a reference point 
for historical trend analysis and a source of network portion of the present 
description. Baselining tools generally collect network traffic statistics and produce 
5 reports which can be used for network portion of the present description, 

troubleshooting, simulation and management. Discovery tools generally collect 
network topology and inventory information in the form of graphical, textual, or 
mathematical representations of the network. They are used to populate network 
drawings, create network models for simulation and generate inventory data. 
10 Baselining and discovery tools collect data about the status of network from varying 
sources including remote monitoring agents, traffic analysis tools, network 
management platforms, inventory tools and directly from the network. 

Recommendation 

15 Because most of these tools are tied to specific tools in other tool categories, the 
recommendation in this category is driven by the recommendations in the other 
categories. Comnet Baseliner and Optimal Surveyor are both associated with 
simulation tools. They promise help to create more accurate network models in less 
time, which would justify their purchase with the associated simulation tool. 

20 However, since a simulation tool has not been recommended for the networking tool 
kit these tools can not be recommended at this time either. NetSuite Professional 
Audit is a very competent discovery tool but due to its price and the lack of 
versatility of its associated drawing tool it is not recommended for the networking 
tool kit. 

25 

Modeling and Simulation 

Modeling and simulation tools create a mathematical model of a network from 
models of network components. A simulation engine then uses statistical 
30 representations of workload as inputs to the model and performs calculations to 

simulate the network over a period of time. These tools are used to test the viability 
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of new network designs, troubleshoot existing networks and predict the effects of 
changes to existing networks. 

Network modeling and simulation is a very important function that allows network 
5 designers to analyze the performance of applications running on a network before 
networking hardware or application software is purchased or implemented. It 
decreases the risk for implementation of new network applications by giving 
designers and decision makers accurate information about how new applications or 
design changes may effect the performance of the network. As the demand for 
10 business critical client/server and intranet applications grows, so may the demand for 
network simulation. It is important to develop the skills and processes needed for 
cost effective network simulation so that it is ready to meet the demand of clients as 
they grow. 

15 Consulting firms are in a unique position to leverage these expensive network 

simulation tools and the skilled employees required to use them across many client 
IT projects thus driving the cost of these services down to a level that allows 
simulation to become viable for a wide range of IT projects. 

20 The recommendation in this tool category is dependent on how the tool is used and 
what type of distribution is planned for it. The first alternative is to use the tool to 
supplement and speed the capacity analysis that is already being done on most 
projects. This type of use would dictate a wide distribution to a large number of 
analysts and consultants. The key characteristics of a tool for this use would be 

25 versatility, ease of use, laptop compatibility and economical price. Analytical 

modeling tools come close to this description but none of the tools evaluated would 
be well suited to this type of distribution due to high price and limited network and 
traffic modeling functionality. A second alternative is to use the tool to build deep 
simulation skills within the practice and provide new simulation and modeling 

30 services to our client services profile. This type of usage would dictate the use of a 
robust discrete events simulation tool for accuracy and detailed results. Due to the 
complexity of the discrete events simulation tool distribution, a core group of skilled 
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users would be required to provide these services. The most important 
characteristics for a tool under this scenario would be accuracy, size of the 
component model library and capability to import network data from other tools. 

5 The most benefit can be derived from the second alternative expanding the service 
offerings of Network Solutions to include Network Simulation. This approach 
would lend it self to the selection of a discrete events simulation tool that is accurate 
and capable of modeling a wide range of networks like Comnet III or Opnet Planner. 
However to successfully leverage this type of tool, deep skills in simulation, which 

10 take time to grow, would be necessary. It is not cost effective to buy an expensive 
tool of this type up front. To bridge the knowledge gap, relationships should be built 
and leveraged with one or more tool vendors to provide simulation services and 
experience for project teams while the deep skills necessary for effective use of these 
tools are developed internally. These tools can then be reevaluated from a skilled 

15 user's perspective within the framework of client services offerings. 

Development of a core skills group to develop deep simulation skills, processes and 
client services would be an appropriate step. Group members would be responsible 
for the selection and maintenance of tools to provide simulation services. As well as 

20 developing modeling and simulation processes and methodologies. Formalization of 
a simulation skill group would enable greater communication between team 
members for sharing of experience and techniques which would lead to the 
development of deeper skills. It would also provide a formal channel for assessment 
of simulation skills. The focus of the skills team would diminish the need for ease 

25 of use and hardware compatibility allowing the team to choose an industrial strength 
simulation tool. 

ReTA Tool Summary 

30 For performance-modeling and network management purposes, one wants to be able 
to produce meaningful reports that describe how a metric is trending relative to a 
baseline, as discussed earlier on in this portion of the present description. For the 
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most critical services elements one may examine such report every day or once a 
week. Time may not allow one to verify every measured element with such 
frequency, so one needs some mechanism by which one is alerted when a particular 
metric has changed in a significant manner. This is achieved by means of thresholds 
5 and alarms. A threshold is a baseline set to a level of the metrics at which one wants 
to become aware of trends in the metric. 



When a threshold is exceeded, one wants to be notified by means of an alarm, e- 
mail, page or other "pushed" indicators. SNMP has the capability to send traps from 
10 devices in a network to a network management system. This is normally used to 
notify when a line is down or a specific device is not responding, however is can 
also send alerts when a certain device is not responding. 

Other mission critical functions when selecting proper performance tools for any 
15 given infrastructure are: 

• Easy to use / easy to deploy 

• Report Generating 

• Proactive Management 
20 • Remote Management 

• Traffic Monitoring 

• Node Monitoring 

• Server Management 

• Scalability 



25 



Focus was given to the top two performance modeling products. 



30 



The products selected above are recognized as the best currently available. While 
there are some sixty performance products on the market, only a small handful has 
been reviewed by the major technical journals. Russell Schnurr of the Gartner 
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Groups recognizes the aforementioned products as being best of bread based on 
market share and interoperability. 

PVCS DESCRIPTION & USAGE 

5 

Figure 93 illustrates a method 9300 for managing software modules during 
development. A software module is stored in a development folder in operation 
9302. A copy of the software module is checked out in operation 9304 by recording 
a name of a user and preventing any other user from altering the software module 

10 while the software is checked out. The copy of the software module is then checked 
in operation 9306 after work is complete on the software module. In operation 9308, 
the software module is stored in a testing folder upon the software module being 
checked in and work on the software module being complete. The software module 
is tested in operation 9310 and stored in a production folder in operation 9312 if the 

1 5 software module succeeds during testing. 

A copy of the software module may be archived prior to storing the software module 
in the testing folder. Also, the software module may be locked prior to testing. 

20 Optionally, the software module may be stored in the development folder if the 

software module fails during testing. Also, the present invention may ensure that the 
testing folder and the production folder include a latest version of the software 
module. Further, user actions relating to the software module may be tracked so that 
a history of the user actions may be reported. The following material provides a 

25 more detailed description of the above-described method. 

Description 



30 



This portion of the present description details the use of PVCS for migration control 
within a project environment. The main objective of migration control is to manage 
the modules developed for a project. The migration process manages the 
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development effort of multiple PVCS Users, by controlling the versions of source 
code as it moves from development to production. 

The purpose of this portion of the present description is to satisfy the following 
criteria: 

• Describe the migration control process for the development effort 

• Define PVCS roles and responsibilities 

• Portion of the present description the PVCS configurations for the UNIX and 
NT environments 

• Explain the promotion model for the UNDC and NT environments 

• Highlight the features and functionality of the PVCS migration control tool 

Detailed Migration Control Process 
Migration Control Environment 

The Development Architecture team designs the PVCS environment to manage the 
development effort. All modules under development (including database schema 
and object scripts; static HTML and images; Active Server Pages; JavaScript and 
style sheets; Interface Definition Language; Java source code; Rose Models; designs 
and supporting portion of the present description) should be version controlled and 
migrated using the PVCS migration process. 

The PVCS repository can be located on any UNIX server available to the 
development effort. This repository may contain the latest embodiments of all 
developed code for both applications and architecture. 

Detailed Migration Control Process Flow 

Figure 93.1 illustrates the PVCS Migration Flow, i.e., depicts the Migration Control 
process flow for the development environment. This diagram also shows a typical 
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promotion model for the process. The three levels in the promotion model are 
development (DEV) 9330, test (TEST) 9332, and production (PROD) 9334. The 
following discussion is organized by promotion level. 

5 Development Level - DEV 

When a PVCS User creates or modifies a module, he/she uses the PVCS client 
application to check out the module from the repository. The PVCS User works on 
the module in the specified working directory on the UNIX server. 

10 

During the development cycle, the PVCS User has privileges to check the code in 
and out of the repository as necessary. It is the responsibility of the PVCS Lead to 
ensure that the PVCS tool is used properly by the PVCS Users. 

15 The first step in making a module update is to use PVCS and check out a "writable 
with a lock" copy of the module. This option ensures that only the user who 
checked out the module can make modifications. When the file is checked out, 
PVCS moves a copy of the file into the development, working directory. 

20 When the development work is completed and the module passes unit tests, the 

PVCS User checks the modified code back into the repository. The PVCS User asks 
the PVCS lead to promote the module to the test environment (TEST). The 
promotion process archives the latest version of the file and places the module in the 
test-working directory. A promotion from a development level is not allowed until 

25 the module is checked into the repository. 

The PVCS Lead tracks modules ready for promotion. The PVCS Lead checks out 
and locks the modules that need to be migrated. A trial migration is performed to 
ensure that everything works as expected. Once this is complete, the modules are 
30 promoted from Development (DEV) to the Test (TEST) promotion level. 



In summary, the roles within the DEV promotion level are: 




PVCS User 



Checks out module into DEV 



Checks in module to the repository when work 
is completed 

Conducts unit testing on modules 

If passed, requests PVCS Lead to promote 



PVCS Lead 



Promotes DEV modules to TEST 



PVCS Administrator 



None 



Testing Level - TEST 

During the string and beyond testing, the tester or the PVCS User uses PVCS to 
check out the modules. The PVCS User works on the module either on their local 
workstation or in a designated location on a shared network server. 

To execute a successful test, the latest versions of the modules must be located in the 
test directory. It is the responsibility of the PVCS Lead to ensure that the test 
directory contains the latest versions of the modules. 

If the tests are successful, the PVCS Lead is notified to promote the module to the 
PROD promotion level. The PVCS Lead checks out and locks the modules that need 
to be migrated. A trial migration is performed to ensure that everything works as 
expected. Once this is complete, the modules are promoted from the test directory to 
the production directory. 

If the test is not successful, the modules requiring additional modifications must be 
demoted to the DEV level. A demotion of the module places it into directory. The 
PVCS User checks out the module in order to make the required changes. Once the 
developer completes the modifications, it is checked back in and the PVCS Lead is 
notified that the module is ready for promotion. The PVCS Lead can then promote 
the module to the TEST promotion level. 
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In summary, the roles within the TEST promotion level are: 




PVCS User 



Performs tests 



Notifies the PVCS Lead for promote 



Notifies the PVCS Lead for demote 



PVCS Lead 



Ensures the latest versions are in TEST 



Notifies all PVCS Users to perform tests 
if passed, promote to PROD 
if failed, demote to DEV 



PVCS Administrator 



None 



5 

Production Level - PROD 

The production promotion level (PROD) is the highest promotional level. This level 
contains modules that are thoroughly tested and ready to be moved into the 
10 production environment. When files are migrated to the PROD level, they are 
placed in the specified working directory a network server. 

When a module gets promoted to this level, it is the responsibility of the PVCS Lead 
to ensure that the production directory contains the latest versions of the modules. If 
15 a change is required to a module in PROD, this module must be demoted to the DEV 
level for further modifications. 

In summary, the roles within the PROD promotion level are: 




PVCS User 



None 



PVCS Lead 



If change required, demote to DEV 
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Ensures the latest versions in PROD 



PVCS Administrator 



None 



Migration Control Process Roles and Responsibilities 

5 

The Development Architecture team identified the three roles for the Migration 
Control process. These roles are PVCS User, PVCS Lead, and PVCS Administrator. 
This portion of the description defines each of the roles in relation to the Migration 
Control process. 

10 

PVCS User 
Description: 

15 The PVCS Users are all of the developers currently assigned to the project. In 

addition, persons involved in the application design effort should also be considered 
users as they may be potentially modifying design deliverables and related portion of 
the present description. 

20 Responsibilities: 



Understand the working directories for the Build environment 

Inform PVCS Lead when modules need to be checked in, checked out or 

promoted 



25 



Communicate issues with the PVCS Lead and PVCS Administrator to ensure 



that all problems are promptly addressed 

Understand how PVCS controls the development lifecycle. 



PVCS Lead 
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Description: 



The PVCS Lead is a designated developer who coordinates the migration of modules 
5 from development to test and from test to production. The PVCS Lead works with 
each Cell Lead (lead developer) to determine when the modules are ready to be 
promoted. 



Responsibilities: 

10 

• Understand the working directories for the Build environment 

• Communicate issues with the PVCS Users and PVCS Administrators to 
ensure that all problems are promptly addressed 

• Ensure all modules are controlled by PVCS 

15 • Portion of the present description all unsuccessful migration attempts 

• Perform check in, check out, promote and demote functions 

• Describe changes with version labels 

• Ensure modules are compiled as expected 



20 PVCS Administrator 



Description: 

The PVCS Administrator works with the PVCS Lead to ensure that the migration 
25 process works as designed. This person is responsible for the installation, 

configuration, maintenance, and troubleshooting of the PVCS application. The 
PVCS Administrator portion of the present descriptions the above activities. 



30 



Responsibilities: 

• Train PVCS Users and PVCS Leads on the tool 
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• Communicate with the PVCS Users and PVCS Leads to ensure that all 
problems are promptly addressed 

• Authorize, supervise, coordinate, and implement the actual migration design 

• Test the configuration of the tool 

5 • Work with the PVCS Leads to portion of the present description all 

unsuccessful migrations 

• Portion of the present description all practices/lessons learned from the 
process 

• Be aware of time schedules for critical times (e.g. server maintenance) 
10 • Grant appropriate access to PVCS Users and PVCS Leads 



PVCS Migration Control Tool Description 



PVCS Overview 

15 

Intersolv's PVCS Version Manager can be used to implement the migration control 
process. This product may be referred to as PVCS throughout this portion of the 
present description. PVCS structures the development environment by providing the 
ability to access previous versions of the modules, create different releases of 
20 development code, and produce reports to track development effort. This portion of 
the description may highlight key features of the software and specify the software 
configuration for the UNIX and NT environments. 

PVCS Key Features 

25 

The main features of PVCS are: 



Project Organization: PVCS allows project teams to organize files by project. 



30 Logical Views: PVCS provides a facility to create different views of project files 
without having multiple copies of physical files. 
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Reverse Delta Management: PVCS keeps one copy of the current file and then 
stores changes to the files in previous revisions. If an older revision is needed, 
PVCS backs out changes starting with the current one. 

5 

Version Reconstruction: PVCS allows users to assign version labels so that one can 
identify which revision was used in which release. 

Multilevel Security: PVCS allows security by user, group and archive. 

10 

Flexible Promotion Models: PVCS enables projects to specify the state that a 
revision is in within the system lifecycle. 

Automatic Audit Trail: PVCS keeps track of the actions that a user performs, and 
15 there are numerous reports that can be generated to review this information. 

Migration Control Procedures 

User Procedures 

20 

This portion of the description details the procedures for using the PVCS software. 
This portion of the description may be used as a reference guide for PVCS Users on 
the development team. 

25 Definitions 

Archive: An archive is the baseline copy of a module. The archive contains all 
revisions to the module, the names of the authors, the dates of the changes, and the 
description of the changes. 



30 



Project: A project is a logically related set of files under version control. The files 
all relate to a given system or subsystem. 
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Workfile: A checked out version of an archive file is a workfile. All modifications 
are made to workfiles. 

Creating Archive Files 
5 An archive file is created in order to track changes to a module or source file. 

To create a new archive: 

1) Select Project | Open Project 

2) Select the files for which one wants to create archives from the files list 
10 3) Choose Actions | Create Archive 

4) Choose Options, and select Check In After Creation and Update Project 
Folder 

5) Choose OK 

15 To create a new archive file upon check in; 

1) Select the files one wants to check in from the Folders or Files list. 

2) Select Actions | Check In and click OK 

3) When the Create New Archive window appears, select OK to ALL 

20 Making Changes to Archive Files 

Checking a file out of an archive gives the developer access to the file for browsing, 
editing or testing. If the file is checked out with a lock, PVCS VM may create a new 
version of the file when it is checked back in. This prevents users from overwriting 
each other's changes. 

25 

To check out a file: 

1) Select the folders, files or revisions to be checked out 

2) Select Actions | Check Out 

3) Select one of the following options, Read only, Writable with Lock, or 
30 Writable (recommend Writable with Lock) 

4) Choose Options to set additional options for checking out files 

5) Choose OK 
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Files are checked in after they have been changed. The file checked out of an 
archive is called a workfile. Each time it is checked in, it becomes a new revision. 
When a file is checked in, the user can also create a version label. 

5 

To check in a file: 

1) Select the files to be checked in 

2) Select Actions | Check In 

3) Enter a description of the changes made in the Change Description field 
10 4) Choose Options to set other options for checking in files 

5) Choose OK 

Complete lists of archive and PVCS menu privileges are listed in this portion of the 
specification. This portion of the specification also describes the archive privileges 

15 for PVCS Users and PVCS leads. The archive privilege list shows which users have 
been granted access to each of the possible activities (e.g. delete revisions, change 
owners, assign version labels, etc.) The ALL column refers to both PVCS Users and 
PVCS Leads. If this column contains a "Y", both PVCS Users and PVCS Leads are 
granted this privilege. If this column contains a "N", both PVCS Users and PVCS 

20 Leads are denied this privilege. If the ALL column is blank, then the explicit 
privileges are noted in the PVCS User or PVCS Lead column. 

This portion of the description also describes the menu privileges for the PVCS 
Users and PVCS Leads. The menu privilege list is similar to the archive privilege 

25 list, except that setting up this table in the PVCS configuration controls the actual 

menu options that are available to all of the PVCS Users. The ALL column refers to 
PVCS Users, PVCS Leads and guest users. If there is an "N" in the ALL column, 
none of the listed users have the menu privilege. If there is a "Y" in the ALL 
column, all listed users have the privilege. An "N" in either the PVCS User, PVCS 

30 Lead or guest column indicates the menu privilege is denied (the menu option may 
not even show up in the list). This portion of the specification summarizes all 
archive (#A) and menu (#M) privileges for all PVCS Users. 
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PVCS Privileges 



Archive Privileges 

Note: default state of all archive privileges is disabled; PVCS Administrator must 
select a privilege to enable it. 



Base Privilege 


Description 


All PVCS PVCS 
User Lead 


AddGroup 


Define promotion groups 


DO NOT ALLOW/SELECT 


AddVersion 


Assign version labels 


Y Y 


BreakLock 


Unlock someone else's revisions 


Y 


ChangeAccessList 


Change archive access list 


Y 


ChangeComment 


Change comment prefixes for 


DO NOT ALLOW/SELECT 


Delimiter 


keywords 




L^nanget/wner 


v^nange arcnive owners 




ChangeProtection 


Change archive attributes 


DO NOT ALLOW/SELECT 


Change WorkfileName 


Change workfile names 


DO NOT ALLOW/SELECT 


DeleteGroup 


Delete promotion groups 


Y 


DeleteRevNonTip 


Delete revisions 


DO NOT ALLOW/SELECT 


DeleteRevTip 


Delete tip revisions 


DO NOT ALLOW/SELECT 


DeleteVersion 


Delete version labels 


Y 


GetNonTip 


Check out non-tip revisions 


Y 


GetTip 


Check out tip revisions 


Y 


InitArchive 


Create archives 


Y 


LockNonTip 


Lock non-tip revisions 


Y Y 


LockProject 


Lock projects 


DO NOT ALLOW/SELECT 


LockTip 


Lock tip revisions 


Y Y 


ModifyChangeDescriptio 
n 


Modify change descriptions 


Y Y 
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ModifyGroup 
Modify Version 
ModifyWorkfileDescripti 
on 

Promote 
PutBranch 
PutTrunk 
StartB ranch 
Unlock 

ViewAccessDB 

ViewArchiveHeader 

ViewArchiveRev 



Modify promotion groups 
Modify version labels 
Modify workfile descriptions 

Promote revision 
Check in branch revisions 
Check in trunk revisions 
Start branches 
Remove locks 

View the access control database 
View archive header information 
View delta information 



TO MOT MMWffiBJfflCJ 



Y 
Y 
Y 



Y 
Y 
Y 



Y 
Y 
Y 
Y 
Y 



Menu Privileges 



Note: default state of all menu privileges is enabled; PVCS Administrator must 
select a privilege to disable it. 



Menu Item Privileges 


All 


PVCS 
User 


PVCS 
Lead 


NoActionsArchiveReport 

NoActionsChangeAttributes 

NoActionsCheckln 


X 






NoActionsCheckOut 








NoActionsCreateArchive 








NoActionsDeleteRevision 




X 




NoActionsDifferenceReport 
NoActionsEdit 








NoActionsJournalReport 
NoActionsLock 




X 




NoActionsMerge 




X 
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Menu Item Privileges 


All 


PVCS 


PVCS 






User 


Lead 


NoActionsPromotionGroup 




X 




No ActionsS QLExport 


X 






NoActionsUnlock 




X 





NoActionsVersionLabel 

NoFileCopy 

NoFileCreateDirectory 

NoFileDelete 

NoFileExit 

NoFileMoveRename 



NoFolderChangeFolder X 
NoFolderChangeFolderMembers 

NoFolderChangeWorkfileDir X 
NoFolderCopyFolderMembers 

NoFolderDeleteFolder X 

NoFolderNewFolder X 



NoFolderUpdateProj ectFolder 

NoHelpAboutVersionManager 

NoHelpContents 

NoHelpGuidedTour 

NoHelpNew 

NoHelpSampleProject 

NoHelpSearch 

NoHelpUsingHelp 



NoOptionsAssignPrivileges X 

NoOptionsDataFileLocations X 

NoOptionsDefinePrivileges X 
NoOptionsDifferenceDisplay 

NoOptionsEditor f X 

NoOptionsGroups X 



-473- 



Menu Item Privileges 




All PVCS 
User 


PVCS 
Lead 


NoOptionsLogin 




X 




NoOptionsPreferences 








NoOptionsSecurity 




X 




NoOptionsToolbar 








NoOptionsUsers 




X 




NoProj ectClosePrqj ect 








NoProj ec tConfigureProj ect 




X 




NoProj ectCopyProj ect 




X 




NoProj ectDeleteProj ect 




X 




NoProj ec tLockProj ect 




X 




NoProj ectNewProj ect 




X 




NoProj ectOpenProj ect 








NoProj ectUnlockProj ect 




X 




ino v iewr neueiaiis 








NoViewFolderDetails 








NoViewLockedFiles 








NoViewModifiedFiles 








NoViewRefresh 








NoViewSortFilesBy 








No WindowNew Window 




N 




User Privileges 


User Name 


Privileges 






PVCS User 


#A_ALL,#A_DEV,#M_ALL,#M_DEV 




PVCS Lead 


#A_ALL,#A_LEAD,#M_ALL,#M_LEAD 





Summary 
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Software Configuration Management (SCM) is the process of identifying and 
maintaining work products throughout the entire life cycle of a project. SCM key 
objectives are to coordinate and record decisions, actions, and approvals to ensure 
the following: 

5 

Changes to software products are controlled and traceable 

Changes to software products are communicated to the affected groups 

Current status of any given software product or unit is readily available 

Configuration management is achieved through the identification, control, 
and audit of all project work products. The Program direction is for all 
projects to create and implement Software Configuration Management plans 
early in the project life cycle (e.g. during Project Study) and revisit them 
periodically during the development effort. At a minimum, the following 
work products should be under SCM control on every project: 
design and test portion of the present description 
standards and procedures 
database components 
architecture components 
application components 

The value of establishing a solid configuration management plan may be visible in 
the many areas it may impact. These areas include: increased accuracy of project 
delivery dates, improved product quality, reduced time to market, project 
25 performance visibility, and increased ease of project transitions. 

This portion of the present description may detail the steps required to implement an 
effective, best practice approach for managing the configuration of a project. 

30 Configuration Management Purpose and Objectives 
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The purpose of Configuration Management (CM) is to establish and maintain the 
integrity of the components of an application throughout the project's life cycle. 
This includes: 

• Comprehensively assessing and evaluating changes to a system after 
requirements have been agreed upon and commitments established. 

• Ensuring that approved changes are communicated, updated, verified and 
implemented properly. 

• Coordinate the project's day-to-day activities and avoid conflicting actions 
by controlling access to code and repositories. 

Who is involved with Configuration Management 

Configuration Management process interfaces extensively with all phases of the 
project life cycle, and as a result, project teams may participate in CM activities. 



CM Responsibilities 



Support Center/Operations 


maintain system baselines 

approve and implement changes to that baseline 


Technical Support 


establish the version repositories 

define packaging and installation procedures 

assist in migration activities 

maintain inventory lists 


Architecture 


maintain architecture baselines 

approve and implement changes to that baseline 


Development 


migrate components on all platforms 
maintain inventory lists 


Test 


migrate components on all platforms 
maintain inventory lists 


Implementation 


migrate components on all platforms 
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maintain inventory lists 


Program Management 


periodically review CM activities and identify CM 

lllipi \J V CIIlCllLo 

periodically review individual projects for compliance with 
periodically review and recommend improvements to the 


Team Leads 


ensure that CIM activities are beinff nerformed 
adhere to CM guidelines 


Functional Lead 


move deliverables to the final folder 
adhere to CM guidelines 


Project Manager 


ensure that CM Plans are created for each project 



Linking CM to a Software Life Cycle 



How and when CM is performed may vary depending on the development life cycle 
5 and methodology selected for the project. During the Design Phase of the life cycle, 
a Project (CM) plan is created. This plan may be revisited and renewed at each 
subsequent phase of the life cycle. This Project CM plan may also include support 
activities detailing procedures for maintenance of the system until the next release. 

10 Project Configuration Management (SCM) Plan 

Once requirements and commitments are established for a project, all changes need 
to be formally processed and controlled. Upon turnover of the system to production, 
the support procedures defined in the Project CM plan may be followed. 

15 A project's CM Plan formally portion of the present descriptions all sub processes of 
CM which include the following: 
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• The baselines from which changes are controlled and communicated to all 
parties involved; and a listing of the units to be placed under configuration 
management. 

• A plan for establishing and controlling project repositories. 

5 • A change control process to track modifications to the baselines. 

• A security profile for each role on the project to control access. 

• Status reporting and continuous improvement activities. 

• Training plans to ensure all parties are prepared to perform their SCM tasks. 

10 Process Flow 

Figure 94 illustrates SCM Planning. 

Major Sub-Processes of Configuration Management 

15 

Identify CM Units & Baselines 9400 

The first step is to identify the CM units that may be put under CM and their 
baselines, then a project can determine the amount of control to be placed on the 
20 project environment. All identified units may be formally reviewed, utilized for 
enhancements, and changed only through the established CM process. 

Establish CM Repositories & Practices 9402 

25 Establish version repositories and mechanisms for controlling development and 
production work products such as code and portion of the present description. 

Identify Change Control 9404 



30 Define the process for evaluating, approving, coordinating, and implementing 
change requests. 
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Collect Metrics & Identify Continuous Improvement Activities 9406 

Track and report the status of changes and versions. It also defines the internal 
5 project review processes for identifying continuous improvement efforts and for 
maintaining the integrity of the work products. 

Review/Establish Project Security 9408 

10 CM does not specify security requirements; however, it does require that portion of 
the present descriptioned practices exist for controlling changes. For more complex 
environments, security principles may need to be more rigorous than just portion of 
the present descriptioned procedures. 

15 Determine Training Requirements 9410 

Identify the training needs for individuals performing CM tasks, as well as 
individuals involved in defining the CM processes. 

20 Create Project CM Plan 9412 

The Project CM plan is a guide for performing Configuration Management activities 
throughout the life cycle of a project. 

25 Identify CM Units & Baselines 

Purpose 

"Identify Configuration Management (CM) Units and Baselines" defines the 
30 activities for turning functional requirements into individual components of the 

system. The output of "Identify CM Units & Baselines" is to establish the baselines 
from which all new software products may be created and to identify all new 




software products along with its components or configuration units. These activities 
ensure that all project team members have the same perspective on the project 
starting point. 

5 Process Flow 

Figure 95 illustrates an Identify CM Units & Baselines Process Flow 
Entry Criteria 

10 

"Identify CM Items and Baselines" 9400 (see Figure 94) requires that: 

System requirements have been defined (e.g. platform, technologies, etc.). 
The project life cycle has been defined (e.g. test phases: AT, PT, etc.). 
1 5 The project plan has been developed and project milestones established 

A conceptual design that defines the system has been or is being developed. 

Exit Criteria 

20 

Completion of "Identify CM Units & Baselines" is accomplished when all CM types 
and units have been identified and signed off. 

Roles and Responsibilities 

25 

The Development team has primary responsibility of identifying the CM units and 
baselines. The Technical Support and Architecture teams can be consulted to ensure 
the list is complete. 

30 Task Description 



Identifying Configuration Types 9500 
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"Identify CM Units & Baselines" lists each component of the project that may be 
created, deleted, or otherwise modified. Along with identifying the configuration 
units, each unit type needs to have an associated promotion and migration procedure. 
5 At a minimum, the following types must be addressed on each project: design and 
test portion of the present description, database components, architecture 
components, and application components. 

A configuration unit is any object that is subject to reviews, deadlines, and/or 
10 utilized by multiple teams. These units should be classified by "type". For example, 
a set of batch programs could have 2 different "types": C programs and header files. 
Configuration types need to be defined in detail allowing changes to be planned, 
recorded, and verified. The CM plan should detail the review and migration process 
for each configuration type. 

15 

Identify Baselines 9502 

The baseline is the foundation for configuration management. It provides the 
official standard on which subsequent work is based and to which authorized 
20 changes are made. After an initial baseline is established and frozen, every 
subsequent change is recorded as a change until the next baseline is set. This 
program has defined its baselines to be the testing environments used on the project. 

Procedure 

25 

The initial establishment of each baseline represents the first point where those units 
may be formally brought under CM. A baseline is an agreed upon point of departure 
usually established at the end of a major project phase (i.e., after design), after which 
all changes must be controlled. Formal baselines should be planned and 
30 subsequently established for the end of each major project phase. This point should 
be selected as appropriate for each project and its development life cycle. 
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For a development project, the following baselines should be established. 
Establishing each baseline is a progressive process that should not overlap. On 
occasion, a prior baseline may need to be updated, but not without updating the 
remaining baselines. 

5 

• The definition baseline — the software requirements portion of the present 
description ("Scope"). 

• The tech and detailed design baseline — the completed software design. 

• The system software component baseline the delivered system software 

10 

Software component baselines are established following each stage: 

• The code and component test baseline — the software components that have 
completed coding and component test on which assembly testing may be 
conducted. 

15 • The assembly test baseline — the software system that has been verified 

through assembly test and is ready for client acceptance test. 

• The implementation/production baseline — the delivered software to which 
modification, correction and enhancements are made. 

20 * This program has defined baselines to be the different testing environments used in 
development projects: Component Test (CT), Assembly Test (AT), Product Test 
(PT), Training (TR), Production (PR), and Production Support (Supp). These stages 
also correspond with the program deliverables, and are portion of the present 
descriptioned in the project plan. 

25 

Baseline Portion of the present description 

Each baseline established by a project may be formally portion of the present 
descriptioned. Additionally, all baseline portion of the present descriptions may be 
30 formally controlled at the point at which the baseline is implemented. 
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A baseline portion of the present description contains a listing of the CM units. The 
portion of the present description may be prepared as a written portion of the present 
description or as a byproduct of a tool. 

5 Establish Configuration Type Naming standards 9504 

All CM units should be uniquely identifiable. Individual projects may define a 
project identifier to be used for all project defined naming standards. Naming 
standards allow multiple development efforts to coexist in a shared development 
10 environment. Each project may use naming standards for each type of configuration 
unit to be placed in a repository. If the predefined naming standards are not 
applicable to a particular project, then specific naming standards need to be portion 
of the present descriptioned in the Project CM Plan. 

15 Identifying Configuration Units 9506 

Configuration units should be identified when creating the Project CM Plan. A 
conceptual design of the system that defines the major system elements (hardware, 
software, database, etc.) is used to determine what units may be identified. All units 
20 following the CM processes need to be added to the Installation Kit Inventory 
deliverable. Any object that is modified due to a change request is considered a 
configuration unit, and should be tracked in the Installation Kit Inventory. 

The configuration unit's definition may allow adequate assessment and portion of 
25 the present description of impact prior to implementation or update of the baseline. 
Each configuration unit should have the following characteristics: 

A Unique Name 
Modification Log 
30 Release Affiliation 

Critical Success Factors 
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Appropriate baselines are identified and scheduled. 
A complete list of CM types and units is produced 

5 Deliverables 

Defined Software Configuration Units 
Installation Kit Inventory 

10 CM Measures 

CM Types per Platform 
CM Units per Project 

15 Establish CM Repositories & Practices 9402 (Figure 94) 

Purpose 

"Establish CM Repositories & Practices" involves the creation and management of 
20 repositories used to store and control objects. The primary purpose for establishing 
and managing multiple CM repositories is to enable a project team to be at different 
stages of the life cycle. Controlling these repositories ensures that data, code and 
portion of the present description are not inadvertently changed or moved. 

25 Process Flow 

Figure 96 illustrates a manner in which CM Repositories and Practices Process Flow 
are established. 



30 



Entry Criteria 
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"Establish CM Repositories & Practices" begins after baselines have been 
established and before the first objects have been created or modified. This is done 
in accordance to the project plan and schedule. 

5 Exit Criteria 

"Establish CM Repositories & Practices" is performed throughout the project's life- 
cycle. 

10 Roles and Responsibilities 

The Architecture team has primary responsibility of establishing the standard set of 
development tools for a given platform - which includes repository software and 
version control tools. 

15 

The Technical Support team ensures that the project teams' development 
environment has been set up correctly, defines migration/promotion processes and 
resolves problems related to that, creates database environment for the project, and 
performs tests to ensure that the tools are functioning properly in the environment. 

20 

The Development team is responsible for making changes to the repository using the 
version control tools provided and processes defined by the Tech Support team. 

The Test and Implementation teams are responsible for understanding the repository 
25 structure and migration processes defined by Tech Support. In addition, the 
Implementation team is responsible for creating the release notice. 

All teams are responsible for ensuring that team members are trained on the 
processes and tools used for version control. 

30 



Task Description 
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Establish Repository Structure 9600 (Figure 96) 

A repository is used to store and control the access to units while maintaining their 
integrity. A project should be able to retrieve any configuration unit upon demand in 
5 order to verify its contents. Additionally, repository security mechanisms should be 
enacted to avoid unauthorized changes. 

Procedure 

10 Repositories must be established for each project to control all baseline 

configuration units. The repository structure for a project shall be portion of the 
present descriptioned in its respective Project CM Plan. At a minimum, the 
repositories shall have these features: 

1 5 The system chosen for the repository should have a security mechanism to control 
access to objects. 

The system must permit each configuration unit to be individually identified, and 
controlled. 

20 The system should control and track changes made to individual units. 

The system should retain information allowing historical reports to be generated 
The system should be able to produce a listing of all units contained in the repository 

CM Repository Backups 9602 

25 

Repository backups provide safeguards against hardware failures and provides an 
option of last resort for the retrevial of lost or corrupted objects. The frequency of 
backups should be determined during SCM Planning. 

30 Defects or faults found in the production environment need to be corrected as 
quickly as possible. In some cases the problem found in production requires 
production to be reverted back to a prior release(wholly or in part). When 
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determining which scheme is best for your project, the following characteristics 



should be considered: 



size of the application 
cost of space 
criticality of application 
complexity of application 



platform technical capabilities 
existing backup schedule 



release schedule 



number of interfaces 



5 Define Promotion and Migration Procedures 9604 
Procedure 

Since most projects may contain multiple environments, it is important to understand 
1 0 how software products are moved from one environment to another within that 

project. It is critical for the Project CM Plan to portion of the present description the 
standard flow of configuration units through the project environments. The 
procedures need to be specifically defined and roles and responsibilities need to be 
clearly stated. The following terms may define the different steps involved in 
1 5 moving objects from one environment to the next: 

Promotion - A promotion is defined as the movement of objects from one phase to 
the next, it may only signify movement within the repository 
Migration - The physical movement of a kit/package from one environment to 
20 another 

Kit Build - The process of packaging the CM units so that they can be migrated to 
another environment. 

Kit Installation - The process of unpackaging the CM units and establishing 
required environment settings. 



25 



Versioning of Configuration Units 
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Through out the development life cycle, multiple versions of each Configuration unit 
may be created. Taking this into consideration, it is necessary to portion of the 
present description in the Project CM Plan, the version control used for the project. 
Multiple versions of CM Units can result from: 

• Multiple Projects modifying code. 

• Shared Services supported across all projects. 

• Different testing and production environments. 



10 Standard Migration Paths 



The V-Model testing approach defines several testing environments. Based on this 
testing model, the program has defined the following standard migration paths. 



15 • Component Test -> Assembly Test* 

• Assembly Test -> Product Test* 

• Product Test -> Operational Readiness Test 

• Product Test or ORT -> Production* 

• Production -> Production Support 



20 



Less complex systems, as well as extremely large systems, may not utilize all levels 
of testing. Projects should utilize at least the three base migration levels: Assembly 
Test, Product Test, and Production. 



25 Notification 



When software products are moved from one environment to another it is important 
that the impacted parties receive sufficient notification. The vehicle used to deliver 
notification may vary across projects so it is necessary to portion of the present 
30 description in the Project CM plan how notification may occur. A release represents 
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a move to another phase, such as a group of changes migrating to production. A 
release notice should be used for any modifications to configuration units or for the 
creation of new configuration units. The release notice should include a list of all 
identified problems and change requests that are being closed (i.e. changes being 
5 delivered) as part of this release; and should be created prior to migration to 
production. 

Critical Success Factors 

Appropriate repositories defined for size of project. 
CM units can be versioned and adequately controlled. 
Standard Control Process is used on the project. 
Access is controlled to appropriate repositories. 
Authorizer for creating a baseline is identified. 

The process for packaging, migrating, and installing is defined and portion of 
the present descriptioned. 



20 Repository Structure, Migration and Promotion Procedures, Packaging Procedures. 
Measures 

Repeat promotions per environment 
Versions per Configuration Unit 

25 

Establish Change Control Process 9404 (Figure 94) 
Purpose 

30 "Establish Change Control Process" is the activity for reaching decisions on 

requested changes, and implementing the changes in production. The purpose of 
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this sub process is to create a group of representatives from within the project to 
review and accept changes. This ensures that all views are considered in making 
decisions that may impact many areas. 

5 Process Flow 

Figure 97 illustrates the Establish Change Control Process. 
Entry Criteria 

10 

"Establish Change Control Process" begins when the CM Unit portion of the Project 
Plan has been created and approved, the first formal baseline is established, and the 
configuration units and components have been identified. 

1 5 Exit Criteria 

"Establish Change Control Process" is performed throughout the life cycle of a 
project. 

20 Roles and Responsibilities 

Incidents defined as change requests can be reported from any environment and 
require the review and approval of project and business partners. Changes include 
specifications/design errors, enhancement requests, change baseline and schedule, 
25 etc. 

The established control group may be responsible for recovery and authorizing 
change request, monitoring and reporting progress, and ensuring the change is 
implemented in all affected environment. 

30 

Task Description 
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Define Control Groups 9700 (Figure 97) 
Procedure 

5 A Control Group has the authority to approve/disapprove all change actions. The 
Control Group meets to discuss and decide upon changes affecting system 
capability, cost, schedule, resources, and interfaces. This group should be involved 
in scheduling installation dates. 

10 Participants 

The members of the Control Group could include representatives from each group, 
organization, or function affected by the project. The membership may vary 
depending on the project and the configuration units. 

15 

Control Configuration Group's members can include membership representatives 
from: 

• Program Management 
20 • Team Leads 

• Functional Leads 

• Users 

• SME's(Subject Matter Experts) 

25 • Participant Duties 

Members shall attend meetings, review change request, and perform follow-up 
activities as necessary. The members shall review and approve changes including 
specification/design errors, enhancement requests, change baseline and schedule, etc. 

30 



Meetings and Agendas 9702 
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During a Change Request evaluation meeting the following topics should be 
addressed by the Change Control group: 



10 



• Reason for the change 

• Impact Analysis of Change Request. 

• Alternative Solutions. 

• Estimated cost 

• Perceived value 

Approve/Disapprove Change Requests 9704 



Procedure 



1 5 Once the change request has been analyzed, a decision must be reached by the 

Control Group to approve, defer, or disapprove the work involved. All decisions 
shall be reached by consensus. 



Track and Implement Change Request 

20 

Track Change Request 9706 



Change requests should be recorded and tracked from initiation through closure. 
Change requests may remain "active" until it is closed by being implemented in all 
25 environments or due to being disapproved and withdrawn. Recording the change 
request along with key information may enable the project team to keep track of the 
request, and help the project team to determine improvement areas to the overall 
change request process. 



30 



For each change request, the following information should be maintained: 
unique change request number request open date 



-492- 



change request initiator 

change request responsible person 



change request description 
request closed date 



Implement Change Request 9708 

Once a change request has been approved, the project team may develop a plan for 
5 implementation. Depending on the scope and current phase of the project, the 
change may be integrated into current development activities or be added to the 
project schedule of upcoming enhancements. 

Approved changes, whether to a development or production system, should undergo 
10 the following: 

The change implementation must be planned, scheduled/rescheduled, and the 
workplan updated. 

The change is assigned to one ore more individuals. 
1 5 New requirements are updated in existing requirements portion of the present 
description. 

Design modifications are portion of the present descriptioned. 
Inventory lists are updated. 

20 Critical Success Factors 

The necessary information to make decision is available during the change request's 
evaluation. 

Control Groups are formally established for each project. 
25 The Control Group assigns actionable items with due dates. 

Communication channels to other Control Groups are established. 

Control Groups are trained in the process and their roles. 

Meetings are held frequently during the development phase of the project. 



30 



Deliverables 
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Define Control Group, Define frequency of review meetings 
Measures 

5 

Numbers of change request opened, closed, rejected 
Time to close each change request 

Collect Metrics & Identify Continuous Improvement Activities 

10 

Purpose 

"Collect Metrics & Identify Continuous Improvement (CI) Activities" are the 
activities for tracking and reporting CM status. The purpose is to communicate to 
15 all project management the timely status of CM activities and change requests, and 
to ensure the integrity of the configuration. 

Process Flow 

20 Figure 98 illustrates Collect Metrics and Identify CI Activities 9406 
Entry Criteria 

"Collect Metrics & Identify CI Activities" begins when the initial baseline 
25 configuration is established -which is usually at the completion of the requirements 
definition. 

Exit Criteria 

30 "Collect Metrics & Identify CI Activities" is performed throughout the system's life 
cycle. 
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Role and Responsibilities 

Project Management may work with the other projects' teams to gather statistics in 
order to create and provide status reports. The reports should supply statistical 
5 information in order to identify potential areas for improvement. 

Task Description 

Maintain Records 9800 

10 

Procedure 

The project teams may collect metrics on the activities of each project. These metrics 
may be available to process leaders to track status on each project, and to ensure 
15 compliance with Configuration Management processes. Compliance may be 
ensured through independent or self directed audits. 

Generate and Distribute Status Reports 9802 

20 Procedure 

CI Review may be scheduled on a regular basis as part of the Project CM Plan. The 
Program Manager may lead and facilitate the review meetings to assist the project 
team in gathering historical data to help assess the rate, causes and impact of 
25 changes. The content and format should be outlined in the Project CM Plan for the 
project. At a minimum, reports should be generated at the completion of each base 
migration level. 

Reports should contain the following types of information: 

30 



• Summary report of Change Requests by status and description. 

• Specific Change Requests contained in each software version. 
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• Change history review of each configuration unit. 

• A description of each configuration unit defined by its current release 
version. 

• Change logs that show the history of releases and changes made to source 
5 files. 

• Number of defects due to migration errors 



Continuous Improvement Review 9804 



10 Procedure 



A Continuous Improvement Review is an inspection conducted by the project team 
to verify the completeness, consistency and interdependencies of products. The 
reviews are a means by which the organization can ensure that the development has 
15 been completed in ways that satisfies all client expectations, and should be 

performed after a final release has been delivered to identify improvement areas 
prior to beginning work on the next release. The reviews can vary in form and 
formality. 



20 The review should include the following: 



• All closed change requests have been incorporated in portion of the present 
description and objects. 

• Change requests or problem reports that remain open are clearly identified so 
25 they can be closed during the next phase. 

• Metrics reviews in order to identify other areas for improvement. 

• General conversation about the flow of the project (e.g. procedures and 
problems encountered) 



30 



Critical Success Factors 
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Change Request log is current. 

Frequency of status reports is established. 

Appropriate individuals receive status reports. 

Status reports are current and accurate. 

Periodic Continuous Improvement Reviews are scheduled 



Deliverables 



Status Reports, Metrics, CI Review Results, Scheduled CI Reviews 

10 

Measures 

• Number of defects for project 

• Number of defects for project due to migration errors 
15 • Number open, closed, deferred, rejected change request 



Review/Establish Project Security 9408 (Figure 94) 



Purpose 

20 

"Review/Establish Project Security" is an activity to ensure that CM progress does 
not interfere or counteract established security and audit policies. CM requires 
control of configuration units. This does not require security controls to be placed 
on all configuration units, but does require the existence of procedures to govern the 
25 access to these units. 



Process Flow 



30 



Figure 99 illustrates the Review/Establish Project Security. 
Entry Criteria 
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"Review/Establish Project Security" begins when the initial baseline configuration is 
established, which is usually at the completion of the requirements definition. 

5 Exit Criteria 

"Review/Establish Project Security" is performed throughout the system's life. 
Role and Responsibilities 

10 

The primary responsibility for establishing configuration unit security may be the 
responsibility of the Security and Technical Support teams. During the initial set up 
of a technical platform 9900, the Architecture team should establish the initial 
security and access procedures and practices. Once the base platform is established, 
15 the Security and Technical Support teams may further define the security rules 9902 
in conjunction with the individual project/application requirements and company 
policies. 

Task Description 
20 Verify Security Practices 

Procedure 

Each application team should maintain security portion of the present description 
25 listing access required per each team role. This portion of the present description 
should be reviewed 9904 periodically with the Security team to ensure security 
policies are consistent with the current business practices. This security portion of 
the present description should be utilized for establishing all new accounts. As part 
of this review, project applications and systems should be checked to verify that 
30 current security access is granted only for team members whose business functions 
require it. 
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Critical Success Factors 

Business rules governing security access are portion of the present description. 
Company policies are followed. 

5 

Deliverables 

Role Access Requirements, Scheduled security reviews, Project CM Plan 
10 Measures 

• Unauthorized changes due to inadequate policies or security 

• Lost time due to access problems 

• Number of defects due to access problems 
15 • Security change requests per project 

Determine Training Requirements 9410 (Figure 94) 

Purpose 

20 

"Determine Training Requirements" is the activity to determine the skills that may 
be required by project team members throughout the project. Once the skills have 
been identified, training needs can be addressed. By identifying training needs ahead 
of time, the project team can schedule required training at the optimal time for the 
25 project. 

Process Flow 



30 



Figure 100 illustrates the Determine Training Requirements. 
Entry Criteria 
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"Determine Training Requirements 55 should initially be performed in conjunction 
with the project plan. 

5 Exit Criteria 

"Determine Training Requirements" may be an activity that is performed throughout 
the project life-cycle. 

Roles and Responsibilities 

The project team leads may be responsible for defining required skill sets 
10000,10002 as well as project training needs 10004 and making sure that team 
members are scheduled for training appropriately 10006. 

Task Description 

The task of "Determine Training Requirements" is an activity performed by each of 
the project team leaders. They may be responsible for defining the gaps between 
current team skills and the skills required given the upcoming project. 

Critical Success Factors 

• Training needs are consistent with project tasks 
25 • Training needs are identified 

• Deliverables 

Project Team Training Plan 
30 CM Measures 

Total training hours 
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Create Project CM Plan 9412 (Figure 94) 
Purpose 

5 

"Create Project CM Plan" is the activity that ties all of the CM activities together. 
The Project CM plan is a procedure guideline for performing CM activities 
throughout the life-cycle of a project. 

Process Flow 

Figure 101 illustrates the Create Project CM Plan. 
Entry Criteria 

"Create Project CM Plan" can not be performed until the previous six steps have 
been completed. 

Exit Criteria 

Completion of "Create Project CM Plan" is accomplished when the Project CM plan 
is delivered to the project management personnel, and signed off by all affected 
teams. 

25 Roles and Responsibilities 

All project teams should actively participate in creating the Project CM Plan. Each 
team should review and approve the Project CM Plan prior to beginning the next 
methodology phase. 

30 

Task Description 
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The task of "Create Project CM Plan" is an activity of utilizing the Project CM Plan 
template in the Program Methodology and tailoring to produce a CM Plan for that 
project's application. A Project CM Plan contains the details on how CM activities 
may be performed for the duration of the project. The creation of the Project CM 
5 Plan is a joint effort between all project teams, with management responsibilities 
falling to the Project Manager. 



Generate Project CM Plan 



10 Procedure 



Generating the Project CM Plan involves performing the activities defined in the 
following sub-processes: 

• Identify CM Units & Baselines 10100 

1 5 • Establish CM Repositories & Practices 1 01 02 

• Establish Change Control Processes 10104 

• Collect Metrics & Identify CI Activities 10106 

• Review/Establish Project Security 10108 

• Determine Training Requirements 10110 

20 • These activities may assist in formally portion of the present descriptioning 

* the project's CM practices. The Project CM Plan is then reviewed by the 
Project Management team. Once the Project CM Plan has been signed off, it 
becomes a part of the overall project plan. 

25 At a minimum, a Project CM Plan should contain information on the following: 



• Definition of Configuration Units Types 

• Baselines that may be established 

• Unit unique naming standards 

30 • Method for processing Change Requests 
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Both System and Application repositories to be established and how they 
may be controlled 

CM related roles, responsibilities, and resources 

Definition of how objects are promoted/migrated between different 

environments 

Checkpoint meetings for project status and continuous improvement 



Critical Success Factors 



10 The Project CM Plan should be written in terms familiar with its users. 

All roles and responsibilities defined in the Project CM Plan shall be assigned. 
All activities defined shall have resources identified to accomplish the activities. 
Project members understand and are trained to perform their CM role. 



1 5 Deliverables 



Project Configuration Management (CM) Plan 



CM Measures 

20 

Actual vs. Estimated time to create the Project CM Plan 
Number of CM Plans created vs. Number of projects 



Naming Standard Requirement 

25 

Each Unit should follow a portion of the present descriptioned naming standard. 
This standard should maintain a unique name for each configuration unit and should 
enable operations personnel to determine the project the unit is associated with as 
well as the responsible personnel for production problems. 

30 

Modification Log 
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Each unit must have a modification log. The log must contain at a minimum the last 
change description, who made the change and when the change was made. 



5 *Note - this does apply to all deliverables defined by the program and includes 
portion of the present description. 

Release Affiliation 

10 Each unit should identify the release under which it was created. As modifications 
are made for new releases, the release should be changed and noted in the 
modification log. 

A repository is a physical or logical space that contains a group of objects. These 
15 object may be referred to as units, a units is any portion of the present description, 
program, report, or deliverable that follows the Project Configuration Management 
Plan. Repositories in general have similar characteristics. This portion of the 
present descriptions details the program requirements for all software repositories. 

20 Unit Controls 
Unit History 
Reporting 



Unit Control 

25 



Unit Control 


Unit Security 


A software repository should have some level of security to 
prevent non-authorized users from changing units. 


Check-Out 


A software repository should allow units to be checked-out, 
once a unit is checked-out, the unit should be flagged so that 
other users may know who is currently working on the unit. 
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Unit Control 


Check-In 


A software repository should allow units to be entered into the 
library, either for the first time, or as updates are made to the 
unit. For each "check-in" the repository should maintain 
information on who checked the unit in, when they checked it 
in, and allow for a description identifying the reason for 
updating or inserting into the library. 


Repository Security 


A software repository should have security to prevent anyone 
from changing units without following the "check-out" and 
"check-in" procedures. 


Versioning 


A software repository should maintain the last three versions of 
any unit. 


History 


A software repository should maintain the change history for 
the last ?? months. This history needs to minimally contain the 
description of the change, who made the change and when the 
change was made. 


Reporting 


Reporting 


Unit Report 


A software repository should be able to create a report listing 
the unit history for given period of time. The report should 
contain the description of the change, who made the change and 
when the change was made. 


Repository Report 


A software repository should be able to create a report listing all 
units contained in the repository and their current status. The 
status of an element would include, the latest version, either by 
number and/or date, and a description of the last change. 



5 Option 1 - Mirrored Production Environment 
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Permanent Staging/Backout Environment 


Description 


Figure 102 shows the Manage CM Repository Process Flow. Option 
1 requires 2 production environments. One environment 10200 
would be set to production while the other 10202 would be the 
previous production environment. When backout is required, the 
previous production is set to current production and the other 
environment is then available for the next release to stage. 


Where 
Applicable 


Option 1 makes performing a backout very quick and easy. However, 
it is also costly from a space and time perspective. Double the space 
is required since virtually two production environments are 
maintained. Option 1 requires more organization so that the status of 
each environment is known. This solution is encouraged for project 
with the following characteristics. 

24 x 7 supported applications 
large/complex applications 
applications with a frequent release schedule 
applications with numerous interfaces 



Option 2 - Copy of the Production Environment 



Maintain Temporary Copy of Previous Production Environment 
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Description 


Option 2 maintains a copy of the previous production environment 
for a specified period of time. This solution is similar to Option 1, 
with the exception that the copy does not have to be physically 
located on the production server and can be compressed or formatted 
differently to minimize space requirements as long as it can be 
restored back into the production environment. Prior to installing a 
release into production, a backup of the production environment is 
created. The backup may or may not be stored on the production 
machine. When a backout is required, the current copy of production 
is replaced with the backup copy. 


Where 
Applicable 


Option 2 is a less costly solution in comparison to Option 1 . It may 
require more time to recover from the backup. This solution would 
be sufficient for applications with the following characteristics: 

non 24 x 7 supported applications 

systems with few interfaces 

systems with an infrequent release schedule 



Option 3 - Maintain Prior Release Copies 



Maintaining Old Releases 
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Description 


Option 3 requires the system to keep copies of prior releases. More 
complex systems with more frequent releases should keep copies of 
multiple releases, simple systems may only require one. When a 
backout is required, the prior version is installed into production, thus 
overwriting the corrupted release's changes. 

Caution must be taken for new additions to the environment, if the 
environment is not cleaned prior to "reinstalling'* new modules may 
need to be deleted. 


Where 
Applicable 


Option 3 is the very time intensive. This solution is a less costly 
solution in comparison to Option 1 . It may require more time to 
recover from the backup. This solution would be sufficient for 
applications with the following characteristics: 
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simple systems 

complex systems with simple and discrete subsystems 
systems where release are a complete subsystem replacement 



New Development/New Release Migration Process 



5 



Platform Information 


Platform Type 


All 


Description 


Migration from Component Test to Assembly Test occurs when 
the Development team successfully completes the Component 
Test exit criteria. The timing of the migration should be 
coordinated between all members of the Development project 
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Platform Information 




group. If the project involves more than one platform, the cross 
platform migration should also be coordinated to be sure that 
units reach the next phase at the appropriate time. For each 
platform the migration "kit" should include all units required 
for the project along with any instructional units. The kit 
should be created and sent to a staging area until approval for 
installation in the Assembly Test environment is given. 



Migration to Stage Information 


Approval to Stage 
(1) 


Development Team Member ( the approval must be tracked ) 


Exit/Approval 
Criteria 


CT Exit Criteria 


Kit Creation/Trigger 
Performed by (2) 
&(3) 


If the Kit creation is automated the trigger should come from 
the approver to stage as listed above. 

If the Kit creation is not automated, then the Development or 
TS team should create the kit based upon a portion of the 
present descriptioned set of procedures. 


Pre-Migration 
Location 


The pre-migration location for each unit of the migration kit 
should be in an approved library/repository that conforms to the 
CM repository requirements 


Post-Migration 
Location 


The post-migration location can be a physically separate 
directory with the appropriate level or security, allowing write 
access for the kit creation process and read access for the 
moving of the kits.. The post migration location can also be a 
logical location, where units are tagged with the AT level. 


Packaging Information 


Man u a I/A u to mated 
Package? Tool? 


Migration can either be manual or automated. In either case the 
process needs to be portion of the present descriptioned and 
must meet the CM requirements for tracking and recovery. 
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Migration to Stage Information 


Brief Package 
Description 


Packaging of the CM units should involve a grouping of all 
required units; this grouping should be maintained throughout 
the entire migration process. This may prevent units from being 
lost or added during migrations. 

If multiple units are combined to create a derived product, the 
creation of the product should be automated by combining like 
tagged units within the repository ( example: a.h, asub.pc, 
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a_main.pc, should all be tagged at the CT level ). This may 
prevent the derived product from becoming out of sync with its 
sub-components in the repository. Only the final product needs 
to be migrated. 


Package Verification 


Verification Check 


A simple procedure should be defined to allow for verification 
of a successful migration. 


Verified by 


The verification should be performed by a Development Project 
team member, prior to the beginning of Assembly Test, this 
verification can be tracked. 


Internal/External Notii 


Ication 


Internal 


The following teams should be notified upon successful 
completion of a migration: Development Project Team 


External 


At this stage no outside communication is required except for 
project status purposes. This task should be incorporated into 
the project status meeting in order to notify business partners 
and other project teams. 



Migration from Stage Information 


Approval from Stage 


Development Member ( the approval must be tracked ) 
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Migration from Stage Information 


(4) 




Entrance/Approval 
Criteria 


AT Entrance Criteria 


Kit Move Perf by 
(5) 


Moving the kit from the staging environment to the installation 
area can be performed by any person from one of the following 
teams: Development, Operations, or TS. Movers need to be 
certain that the appropriate approval has been given prior to 
moving the kit. 


Kit Install Perf by 
(6) 


Installation of the kit into the new environment can also be 
performed by multiple groups. Consideration should be given 
to the level of system security access required to perform the 
installation. Whenever a significant level of access is required, 
the installation process should be limited to either the TS team 
or Operations. 


Pre-Migration 
Location 


The pre-migration location should match the post migration 
location listed above for the Migration to Stage 


Post-Migration 
Location 


The post-migration location should be a physically separate 
environment from the CT environment whenever feasible and 
cost effective. This location should mirror the production 
environment as closely as possible. 


Un-Packaging/Installation Information 


Manual/Automated 
Package? Tool? 


For complex systems and installations requiring a significant 
level of access the process should be automated. Manual 
processes may require explicit directions and a more rigorous 
verification process. 


Brief Package 
Description 


Whether the installation process is manual or automated, the 
process should be clearly portion of the present descriptioned. 
All units should have a specific location on the destination 
server. 
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Migration from Stage Information 




The installation process should take into account factors such as 
space, currently running executables, overwriting existing units, 
and ?? 


Install Verification 


Verification Check 


A simple procedure should be defined to allow for verification 
of a successful migration. 

For manual process the verification should be more extensive 


Verified by 


The verification should be performed by a Development Project 
team member, prior to the beginning of Assembly Test. This 
verification can be tracked. 


Internal/External Notii 


Ication 


Internal 


The following teams should be notified upon successful 
completion of a migration: Development Project Team 


External 


At this stage no outside communication is required except for 
project status purposes. This task should be incorporated into 
the project status meeting in order to notify business partners 
and other project teams. 


Program AT -> PT Promotion and Migration Guidelines 


Platform Information 


Platform Type 


All 


Description 


Migration from Assembly Test to Product Test occurs when the 
Development team has successfully completed the Assembly 
Test exit criteria. The timing of the migration should be 
coordinated between Development and Test. If the project 
involves more than one platform, the cross platform migration 
should also be coordinated to be sure that units reach the next 
phase at the appropriate time. For each platform the migration 
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Platform Information 




"kit" should include all units required for the project along with 
any instructional units. The kit should be created and sent to a 
staging area until approval for installation in the Product Test 
environment is given. 



Migration to Stage Information 


Approval to Stage 
(1) 


Development Team Member ( this approval must be tracked ) 


Exit/Approval 
Criteria 


AT Exit Criteria 


Kit Creation/Trigger 
Performed by (2) 
&(3) 


If the Kit creation is automated the trigger should come from 
the approver to stage as listed above. 

If the Kit creation is not automated, then the Development or 
TS team should created the kit based upon a portion of the 
present descriptioned set of procedures. 


Pre-Migration 
Location 


The pre-migration location can be a physically separate 
directory with the appropriate level of security or it can be a 
logical environment in which the units are tagged with the 
appropriate migration level. 


Post-Migration 
Location 


The staging environment can be a physically separate directory 
with the appropriate level of security or it can be a logically 
separate environment in which the units are tagged with the 
appropriate migration level. 


Packaging Information 


Manual/Automated 
Package? Tool? 


Migration can either be manual or automated. In either case the 
process needs to be portion of the present descriptioned and 
must meet the CM requirements for tracking and recovery. 


Brief Package 
Description 


Packaging of the CM units should involve utilizing the same 
grouping as the migration from CT to AT, this may prevent the 
introduction of new units or the loss of required units. 
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Migration to Stage Information 




If multiple units are combined to create a derived product then 
only the derived product needs to be migrated. Some 
environments may require the product to be created differently 
for each destination environment, in this case the sub- 
components need to be migrated as well. 


Package Verification 


Verification Check 


A simple procedure should be defined to allow for verification 
of a successful migration. This procedure may require an extra 
step during the actual packaging to create an audit log 
identifying the status of the migration. 


Verified by 


The verification should be performed by a Development Project 
team member, prior to notifying Test. 


Internal/External Notil 


flcation 


Internal 


The following teams should be notified upon successful 
completion of a migration: Test Team 


External 


At this stage no outside communication is required except for 
project status purposes. This task should be incorporated into 
the project status meeting in order to notify business partners 
and other project teams. 




Migration from Stage Information 


Approval from Stage 
(4) 


Development Member ( this approval must to be tracked ) 


Entrance/ Approval 
Criteria 


PT Entrance Criteria 


Kit Move Perf by 
(5) 


Moving the kit from the staging environment to the installation 
area can be performed by any person from one of the following 
teams: Development, Operations, or TS. Movers need to be 
certain that the appropriate approval has been given prior to 
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Migration from Stage Information 




moving the kit. 


Kit Install Perfby 
(6) 


Installation of the kit into the new environment can also be 
performed by multiple groups. Consideration should be given 
to the level of system security access required to perform the 
installation. Whenever a significant level of access is required, 
the installation process should be limited to either the TS team 
or Operations. 


Pre-Migration 
Location 


The pre-migration location should match the post migration 

1 A* 1*4.-11 £* ll tk A" A * A. O A 

location listed above for the Migration to Stage 


Post-Migration 
Location 


The post-migration location should be a physically separate 
environment from the CT environment whenever feasible and 
cost effective. This location should mirror the production 
environment as closely as possible. 


Un-Packaging/Installaf 


tion Information 


Manual/Automated 
Package? Tool? 


For complex systems and installations requiring a significant 
level of access the process should be automated. Manual 
process may require explicit directions and a more rigorous 
verification process. 


Brief Package 
Description 


Whether the installation process is manual or automated, the 
process should be clearly portion of the present descriptioned. 
All units should have a specific location on the destination 
server. 

The installation process should take into account factors such as 
space, currently running executables, overwriting existing units, 
and ?? 


Install Verification 


Verification Check 


A simple procedure should be defined to allow for verification 
of a successful migration. This procedure may require an extra 
step during the actual packaging to create an audit log 
identifying the status of the migration. 
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Migration from Stage Information 




ror manual processes inc veoiit/aiion aiiouiti dc mure caiciimvc 


Verified by 


The verification should be performed by an Test member, prior 
to the beginning of Product Test. 


Internal/External NotiJ 


Ication 


Internal 


i ne ioiiowing teams snouiu oe noiiiiea upon successiui 
completion of the migration: Test 


External 


At this stage no outside communication is required except for 
project status purposes. This task should be incorporated into 
the project status meeting in order to notify business partners 
and other project teams. 



SIR WORKBENCH USAGE 

5 Figure 103 illustrates a method 10300 for providing a system investigation report 
workbench. First, in operation 10302, multiple types of information are received 
relating to a plurality of system investigation reports from a plurality of users. The 
types of information relating to the system investigation reports are displayed in a 
plurality of fields in operation 10304. Browsing of the information relating to each 
10 of the system investigation reports is allowed in operation 10306. Change requests 
relating to the system investigation reports are initiated upon a predetermined user 
action in operation 10308. These the change requests are managed in operation 
10310 by displaying the change requests, allowing the users to edit the change 
requests, and indicating which of the change requests have been implemented. 

15 

Optionally, the displayed information may be filtered based on criterion including 
criterion selected by the users or a predetermined group of criterion for reporting 
purposes. As a further option, the filtered, displayed material may also be printed. 
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Editing of the information relating to the system investigation reports may be 
allowed. In such an embodiment, a first type of the information may be displayed 
separate from a second type of the information with editing of the second type of 
information allowed only upon authentication of an identity of an authorized user. 

5 

As an option, the fields may include a date each system investigation report was 
created, the user that created each system investigation report, a status of each 
system investigation report, a priority of each system investigation report, a 
description of each system investigation report, a person responsible for resolving 
10 each system investigation report, a target date for resolving of each system 
investigation report, and/or a date when each system investigation report was 
resolved. The following material provides a more detailed description of the above- 
described method. 

The following description provides an overview of the System Investigation Report 
(SIR) Workbench for use on a ReTA engagement. The SIR Workbench is be used to 
report development, testing, architecture, and infrastructure problems and desired 
enhancements. It also provides a means for project managers to control the Change 
Management Process. 

SIR Lifecycle 

New SIRs are created during testing as errors are found. 
After a SIR has been created, a team lead may assign the SIR to a developer. 
25 The assigned developer may review and fix the SIR. 

The project lead is responsible for closing, deferring, and rejecting SIRs. 



SIR Responsibilities by Role 



Role 


Responsibilities 


Tool Section 


Tester 


Create a new SIR 


New SIR 
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Team lead 


Assign the SIR 

TmII in ^FR Hf^tnil^ (f* o HifTJpnltv p<;t 
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hours) 


SIR Maintenance 


Developer 


Fix the SIR 
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comments) 


SIR Maintenance 


Project lead 


Close, Defer, or Reject the SIR 
Change Control administration 


SIR Maintenance 
Print Reports 


SIR 

Workbench 
Administrat 
or 


Tool Support 


Makes updates/changes to SIR 
Workbench 



Workbench Overview 
Main Window 

As shown in Figure 103.1, the SIR Workbench Main Window screen 10330 
provides navigation buttons for adding new SIRs 10332, viewing existing SIRs 
10334, viewing/printing existing reports 10336 and help 10338. 

Creating a New SIR 

From the Main Window, select the New button 10332. The New SIR window 
10400 may be displayed which is illustrated in Figure 104. All SIR requests with 
status of New (in the Status field 10402) can be reviewed. To look at other newly 
submitted SIRs, scroll through the record numbers 10334 (located in the bottom, 
left-hand corner). 



To complete the form, do the following: 
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Select the appropriate Originator 10336, Project Phase 10338 and 
Component 10310 from the list boxes. 

Enter a short description of the problem within the SIR Title field 10312. 
Enter a detailed description of the problem within the Detailed Description 
field 10314. 

Select the Close button 10316 to return to the main window 10330 (Figure 
103.1). 



Reviewing and Modifying Existing SIRs 

10 

• From the main window 10330, select the View button 10334. As illustrated 
in Figure 105, this may display a window 10500 similar to the New SIR 
window, however it is possible to scroll through existing SIRs using the 
Record control 10502 located in the lower left portion of the window. 
15 • To search for a specific SIRs, click on the field containing the data to search 

by and then click on the Find SIR button 10504. Enter your search criteria 
when the prompted. The resulting SIRs should comply with the search 
criteria. Advance through the retrieved records using the Record control. 



20 Team Lead Administration 

Typically it may be the Team Lead's responsibility to review and assign SIRs to 
individual developers. To do this, simply type within the desired fields or select the 
appropriate options from the list boxes. Pressing the Close button or advancing to 
25 another SIR may commit the changes. Pressing the Escape button may cancel 
changes. 



Change Control Administration 



30 Using the Change Request Detail button 10506 (Figure 105) located on this 

window, the Team Lead or the Project Manager has the ability to initiate and update 
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the status of the current SIR within the Change Control process. See Figure 106, 
which illustrates the Change Control Details Window 10600. Various fields may be 
updated and changed, such as the Investigation Description field 10602 and the 
Value Description field 10604. 

Printing Reports 

From the main window, select the Report button 10336 (Figure 103,1). This may 
display the Report Selection Screen 10700, which is illustrated in Figure 107. 

Select the appropriate criteria for the desired reports and select the Preview button 
10702. This may provide a view of the report from which it is possible to create 
printed copies. To return to the main window select the Close button 10704. 

SOURCE CONTROL 

This paper provides an overview of the configuration and use of Microsoft's Visual 
SourceSafe™ (VSS) on the ReTA Phase 1 engagement. This portion of the present 
description may assume that a VSS installation has already been performed on a 
Windows NT workstation or server and is visible to the development network. It 
also assumes that developer workstations have performed the network installation 
and can access the shared SourceSafe folder. 

SourceSafe Administration 

User Administration 

Using the VSS Administrator 10800, create the user accounts 10802 for individual 
team members. See Figure 108. Ensure that appropriate access rights 10804 are 
given appropriately. Some team members may require full access, while others may 
only need to read from the repository. For assistance in this process refer to the 
SourceSafe online help. 
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Repository Administration 

Project Hierarchy 

Within the Visual SourceSafe Explorer, configure the project tree 10900 as shown in Figure 109 
and 109.1 so as to logically separate source code 10902, tools 10904, and documentation 10906 
for ease of use and administration. The structure should be designed to allow developers to 
quickly locate and retrieve desired projects and/or files while allowing for quick and easy 
administration. 

Management 

It is the job of the Source Control Administrator to manage the source code repository. This 
includes analyzing the repository for signs of database corruption, archiving the database when it 
becomes too large and cleaning the Temporary folders routinely. The online help within the VSS 
Administrator tool provides step-by- step descriptions of performing these and other 
administrative tasks. 

5 Performance 

VSS is not a true client/server system. All the VSS software runs on the client. No 
software component runs on the server, so in that respect, VSS can be treated as a 
file server. With that in mind, it may be useful to ask the local network and server 
10 administrators to provide assistance in timing the server. 

Additionally, the following steps should be done periodically to ensure better 
performance: 

Run the supplied Analyze.exe utility to search for and fix any corruption or errors 
1 5 Use a disk de-fragmentation application to maintain disk integrity 

Export old versions of source code and store in another location (tape, CD-ROM, 
etc.) 

SourceSafe Usage 
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Check Out 

Application checkout can be performed at any project or file level using the VSS 
5 Explorer. It is possible to check out 11000 the entire application 11002, individual 
packages, or individual files. Figure 110 illustrates the user getting the latest of the 
server-side application code from VSS. During the build phase the developer would 
typically performing the following: 

10 Get a latest version of the entire application by right clicking on the application and 
selecting Get Latest Version 11004. Note that this operation does not 'check out' 
any code, it merely creates a local copy of the latest version of code. 

Next, when the window 11100 in Figure 111 appears, select the Recursive checkbox 
15 11102 to copy any sub-projects. Also, check the Build Tree checkbox 11104 if one 
has not performed this operation before. Upon completion one should have a 
complete set of application folders and sub-folders within your local working 
directory. 

20 At some times it may be desirable to get an earlier 'Labeled' version of the source 
code. An example would be if one wished to retrieve the last version of code that 
passed Assembly Test. Selecting the 'Show History' menu item 11006 (see Figure 
110) from the right-mouse popup window displays the History window 11200, 
which is illustrated in Figure 112. Earlier versions may be selected from there based 

25 on the entry in the Date column 11202. 

After getting the desired version of the entire application, one may then check out 
the individual project or files that are going to be updated. The check out process 
may put a lock on the files within VSS as well as copy the latest version of the files 
30 to the local working directory. 
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Upon completion the VSS Explorer may reflect the status of the checked out files for 
other developers to see. At this point one can open the local project or files and 
make any desired changes. Referring to Figure 113, select files 11300 and right 
click on the files to bring up the popup window 1 1302. Select the Check Out menu 
5 option 11304. Open the desired files and make changes. 

If the developer decides that they are not going to make any changes or for some 
other reason, no longer wants to have the files checked out in their name, the 
developer can select the 'Undo Check Out' menu option 11306 from the right- 
10 mouse click popup window. This may reset the state of the files within VSS. 

Check In 

After successfully making modifications to the local copy of the source code, the 
15 developer should check the new version of the code into VSS. This is accomplished 
by the following tasks. 

From within the VSS Explorer, select the files that one wishes to check back in to 
VSS. Right mouse click on the files and select the 'Check In' menu item 11400 as 
illustrated in Figure 114. 

20 

When prompted for the Check In details at the Check In Screen 11500, which is 
illustrated in Figure 115, make sure that each developer provides details of what 
modifications took place in the Comment field 11502. This can be useful for 
reviewing the history of stored versions. 

25 

Version Labels 

VSS uses version numbers to keep track of every change one makes to your files and 
projects. This gives one the ability to retrieve any version of a file or project. VSS 
30 keeps track of old versions in 3 ways - by internal version number, by date, and by 
user-defined labels. 
Version Number 
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The internal version number is assigned and maintained by VSS. VSS gives every 
version of a file and project a version number, and displays it in the History of File 
or History of Project Details dialog box. This version number is always a whole 
number. 

Version Label 

Far more useful, however, are user-defined labels. See Figure 116, which illustrates 
a label creation dialog box 11600. The label is entered in the Label field 11602. 
Comments may also be entered/updated in the Comment field 11604. One can 
associate a label with any version of any file or project. A label can be a string of up 
to 31 characters. Any of the following are valid labels: "1.0", "2.01b", "Final Beta", 
and "Approved for QA". After one applies these labels, one can retrieve files 
associated with a particular state of your project from the History dialog box, which 
is accessed from the Show History command on the Tools menu. When one labels a 
project with a descriptive text string, all the files in that project and sub-project 
inherit the label. 

Consider the following when one uses the Label command: 

• When one uses the Label command, one creates a new version in History of 
the selected project or file, however, the file or project itself remains the 
same. 

• If one assigns a label to a version that already has a label, one overwrites the 
old label. VSS issues a warning before removing the old label. 

• When one edits a label in the History Details dialog box, you do not create a 
new version of the file or project, you merely assign a new label to an 
existing version. 

• If you add a label to a version of a file or project in which the label already 
existed on another version, you may be prompted to remove the old label. 
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History Reporting 

As illustrated in Figure 117, the History of Project dialog box 11700 displays the 
history of a selected project in the Action column 11702, including all significant 
5 events, such as the deletion of files or subprojects, addition of files or subprojects, 
labeling and renaming of items, and check ins. For each significant event, the dialog 
box shows the affected file or subproject in the Name column 11704, the user who 
performed the action in the User column 11706, the date and time of the event in the 
Date column 11708, and the description of the event in the Action column. Events 
10 are listed with the most current event at the top of the display. 

From this window it is possible to view the details of the change by selecting the 
Details button 11710. This may bring up the History Details dialog box 11800, 
which is depicted in Figure 118. This box includes both general Comment and 
1 5 Label comment fields 1 1802,1 1804. It is also possible to print the history details 
using the Report button 11712 of Figure 117. 

Impact Analysis 

20 Use the Find In Files command to display a list of all occurrences of a character 
string in the VSS files you specify. You can use the command on a single file or on 
an entire project. This is useful when searching for files that make use of a 
particular component, interface or method. 

25 

FIREWALL RECOMMENDATION 

30 The main purpose of deploying a firewall is to protect the confidentiality and 

integrity of the organization's data, detect any attempted intrusions, minimize the 
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risk zone exposed to the public network, support secure connections to remote users 
and business partners, and manage the traffic to and from the public network. 

This portion of the present description outlines the evaluation process and Analysis 
5 of an Internet firewall for ReTA. It may discuss the selection approach, the product 
requirements, and the evaluation of the products, in order to obtain a final 
recommendation. The end to end process is illustrated in Figure 119: 

Approach 

10 

The first step in the firewall evaluation process was the development of a selection 
criteria matrix, and the specification of requirements by ReTA in a Firewall Analysis 
phase 11930. During the Product Evaluation phase 11932, a number of key 
technical and non-technical areas were evaluated, such as security model employed, 
15 interfaces supported, performance, reporting, monitoring, SNMP support, third party 
support, market position, cost, and vendor support. A high level evaluation was 
conducted to determine six vendor candidates. After an in-depth study, two 
remaining products were selected during the Final Recommendation phase 11934. 

20 What follows may illustrate the selection criteria and evaluation information 
obtained in order to eventually select one firewall vendor for the final 
recommendation. 

Product Analysis 

25 

Many Internet Firewall products exist on the market to date, ensuring a secure 
enterprise wide solution from a variety of security threats. Jude O'Reilly, an analyst 
at the Gardner Group Stamford Conn. Predicts that by the year 2000 there may be 
roughly five firewall suppliers from which to choose from: Check Point Software 
30 Inc., Redwood City Calif; Cisco; Cyberguard, Fort Lauderdale, Fla.; Raptor Systems 
Inc., Waltham, Mass., and TIS. 
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Focus was given to the top six firewall products. A short list of the leading products 
on the market was developed based on industry expertise, technical reviews, and 
research group reports. These products include: 

5 Check Point Fire Wall- 1 for NT 

Secure Computing Border Ware Ver. 5.0 
Raptor Firewall 5.0 for NT 
CyberGuard Firewall Version 3.0 
Microsoft Proxy Server Ver. 2.0 
10 Trusted Information Gauntlet Ver 3.2 

The products selected above are recognized as the best currently available. While 
there are many firewall products on the market, only a small handful has been 
reviewed by the major technical journals in 1998. This short list includes the six 
1 5 products that were reviewed and highly rated by most of the journals. Specifically, 
the following articles were utilized: 

ICS A, Information Computer Security Association, "Firewall Industry Guide, 1998 
LanTimes, August, 1998, "Product Comparison: Firewalls" 
20 Data Communications, April, 1998, "NT Firewalls: Tough Enough" 
Tech Web, March 17, 1998, "Beef up External Security" 

Network Computing, November, 1998, "Seven Firewalls fit for your Enterprise" 
Federal Computer Week, September 14, 1998, "FCW's Hacker Challenge" 

25 The information for each product was normalized to facilitate product comparison. 
Each product was evaluated and rated against ReTA's requirements. 

The provision of firewalls has become a commodity business. For most enterprises, 
any of the firewall software on the Firewall Products Chart 12000 illustrated in 
30 Figure 120 may provide adequate security. Feature and ease-of-use differences have 
blurred between firewall vendors. As each vendor delivers new features, its 
competitors quickly match and raise the ante. 
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The next challenge was to determine what the best fit would be for ReTA. After 
careful consideration, two firewall vendors were selected for the product evaluation 
stage. Figure 121 illustrates the selected products: Check Point Firewall for NT 
5 12100 and Microsoft Proxy Server Version 2.0 12102. 

Check Point's Firewall for NT: Maintaining a high presents in the market place, 
Check Point is the leader in firewall security with it's 35 to 40% of the market share. 
Stateful inspection is the new generation of firewall technology, providing the 
10 highest possible level of security, invented and patented by Check Point Software 
Technologies. 

Stateful Inspection packet inspection at all 7 layers of the OSI Model. 
INSPECT maintaining a high level of performance. 
15 Versatility of various OS platforms, Windows NT, Unix. 

OPSEC (Open Platform for Secure Enterprise Connectivity) manages all 
aspects of network security. 

Microsoft Proxy 2.0: Provides fast access to customer and partner business 
20 information on the Web, while at the same time providing a secure private 

infrastructure from the Internet. Microsoft Proxy 2.0 is relatively new to the market 
place, cost, dynamic packet filtering (DPF) and reverse proxy are some if its main 
features. Proxy 2.0 feature overview: 

25 Socks 4.3 Proxy basic sockets support for non- Windows. 
Winsock Proxy supports most Winsock 1.1 applet. 
Web Proxy supports any CERN web browser. 
Packet Filter / Firewall Static and Dynamic filtering 

30 Requirements 
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Firewall products have matured rapidly over the past few years. Most products today 
support a variety of firewall designs including packet filter, application proxy, and 
stateful inspection. Many also support most of the popular Internet protocols now in 
use. The majority also support network address translation in one form or another. 
5 Some of the newer products now support content screening - they can inspect files 
for viruses and ActiveX components or Java applets for potential problems. 
Reporting, ease of configuration, and performance are the real areas of 
differentiation between these products since they all offer excellent security. 

10 Keeping this in mind, each product has been considered from a number of different 
perspectives. 

• Support network address translation 

• Traffic control by source/destination address, application, etc. 
15 • Alert generation for breaches 

• Encryption support 

• Authentication support 

• Centralized administration of multiple firewalls 

• Easy to use event logging 
20 • Content screening 

• MS Windows NT-based operating platform 

• Intuitive administration interface 

• Support a wide range of services 

• Excellent performance 

25 • Certified by Internet Security Assurances Services (ISCA Inc.) 

• Withstand various forms of denial of service attacks 

• Market acceptance and support 

The ICSA Inc. is an independent industry organization that certifies commercial 
30 firewall products against a standard set of functional and security requirements. 

Functional requirements include services provided to internal and external users, and 
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management capability. Security requirements include port scanning, penetration 
testing, as well as the use of ISS (Internet Security System) Security Scanner. The 
products reported here (either an earlier version or the current version) are certified 
by ICSA Inc. 

5 

ICSA's testing is quite thorough. Its certification program is devoted to ensuring that 
firewalls meet minimum requirements for reliable protection. The agency scans each 
firewall it considers to make sure the firewall performs as advertised. The agency 
also verifies that common Internet applications continue to function as expected. 

10 

Product Evaluation 

The relative strengths and weaknesses between the products were considered. The 
main evaluation criteria were rated subjectively based on available information. A 
15 weighted summary was calculated for each product according to four categories: 
business (15%), technical (30%), application (30%), and management/operational 
(25%). The results of this analysis are presented in the following Table. 
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As mentioned, all six of the products analyzed here are best of breed. They differ 
minimally in functioning as a basic firewall with good performance and solid 
security. As can be seen from the features summary table in the previous portion of 
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the description, all six of these products have very similar features in general. 
However, there are important differences when the features are compared in detail. 

A Gartner Group report on firewall vendors from October 1997 placed Check Point, 
5 Trusted Information Systems, and Raptor Systems in its upper right "quadrant". 
Vendors in this quadrant have more complete vision and better ability to execute. 
Furthermore, Gartner stated that any firewalls on their positioning chart would 
provide adequate security. Feature differences across products are quickly copied 
and no longer offer competitive differentiation. 

10 

The technical press often did not compare all products consistently. They also may 
not have reviewed the same version of the product as currently available. These two 
factors, as well as the different evaluation criteria and weighting used, partially 
contributed to the differences among reviews. 

15 

While a rich feature set is important for a firewall, ease of use and configurability are 
equally important because most security breaches result from improper firewall 
configuration. All of these products also support configuration checking to ensure 
all the rules are consistent and that common mistakes are not made. They also 
20 support centrally managing multiple firewalls from one console. 

In the Data Communications review, they rated the ease of performing certain tasks 
using each product. These tasks include configuring alert notification, remote 
shutdown, denying access from a given subnet, log blocked access attempts, and 
25 various common rules. All the firewalls were rated as easy to use by the review - 

although not all types of attacks were logged by every product. All of these products 
support notification of an attack by pager and/or e-mail. 

The base-operating platform of each product is an important consideration for 
30 ReTA. All of the firewall products selected can run under MS Windows NT. In 
addition to running on standard commercial OS platforms, Fire Wall- 1 also stands 
out with third party vendor support. All of the remaining products performed at the 
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10 to 20 Mbps range. There are a number of factors contributing to FireWall-1 's 
strong showing, as packet filtering firewalls in general have better performance 
because they perform "less work." 

5 Industry support and market share is also in Check Point's favor. With some 40 
percent of the firewall market in 1997, no other product approaches Fire Wall- l's 
dominance. It is no wonder that Check Point has such broad support in the security 
products industry through its OPSEC (Open Platform for Secure Enterprise 
Connectivity) Alliance. The goal of the Alliance (currently with some two dozen 
10 member companies) is to guarantee interoperability between various security 

applications that may be present in the enterprise. Check Point also has alliances 
with Bay Networks, Hewlett-Packard, Xylan and U.S. Robotics to build software 
directly into their routers. 

15 Finally, most application gateway firewalls only provide proxy service for the most 
common Internet protocols — such as ftp, http, https, etc. Generic proxy service is 
offered to support other protocols. However, generic proxies do not provide the 
enhanced security that specific proxies provide, thus defeating the whole purpose of 
application gateways. For this reason, application gateway-only firewalls are rated 

20 lower than those that support both application gateway and packet filtering. 

Due to ReTA's unknown protocol requirements for future generation of Internet 
applications, gateways may not be able to efficiently and securely support those 
applications. In addition to being a statefiil packet filter that can support any 
25 protocol, FireWall-1 has a powerful scripting language. This capability allows an 
experienced administrator to add sophisticated support for custom services. 

Detailed Comparison 

30 Check Point Firewall- 1 for NT 



Pros: 
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excellent performance 
rich and simple GUI 

statefiil inspection gives safe transport to virtually any application 
highly scaleable 

centralized management capable of supporting multiple installations 
load balancing and fail over 
high market acceptance 
extensive third party support 



10 Cons: 



• rule editor not so intuitive 

• less-than-perfect configuration tools 

• turns off logging on disk/log full error - bad for auditing and security 

• possible corruption of statefiil inspection tables leaves network vulnerable 
15 (although there is no indication that such corruption is likely) 

• statefiil inspection cannot make application-level decisions 

• packets are forwarded rather than reconstructed anew (makes it possible for 
out-of-band attack) 

• lack of information regarding the layer that each protocol is examined by 
20 default 

Secure Computing BorderWare 

Pros: 

25 • good tools for massaging of log data 

• 17 standard predefined reports 

• warns managers about potentially disastrous configuration choices 

• very comprehensive filtering 

• separate TCP/IP stack for send and receive - to eliminate chance of a fault in 
30 the stack causing a security vulnerability 
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shuts-down on disk full error, and rotates logs on log full error - good for 
security and auditing 

automatically gather information on possible intruders 

up to four interfaces with separate TCP/IP stack - no access across interfaces 

vendor supplies hardened OS 

OS does not provide super-user capability to gain total system control 
proxy runs in its own security domain - exposure in one proxy does not affect 
others 



10 Cons: 

• application proxy only 

• runs on BSDI operating system only 

• does not have firewall load balancing/fault tolerance option 

• no default proxy for https 

15 •no default proxy for SQL*Net 

• central console cannot operate multiple firewalls does not support Token 
Ring interface 



CyberGuard Firewall 

20 

Pros: 

• virtually flawless security 

• shuts down access when log files fill - good for security and auditing 

• centralized management 
25 • load balancing 

• good performance 

• large number of options 

• strong administration GUI 

• vendor supplies hardened OS 

30 • communication blocked between network and OS 
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• log many different types of attacks 
Cons: 

• requires experienced UNIX administrator 
5 • runs on SCO UnixWare 

• no default proxy for https 

• no default proxy for SQL*Net 

• currently does not support Token Ring 

10 Raptor Eagle 
Pros: 

• integration with Windows NT event viewer 

• integration with Windows NT performance monitor 
15 • integration with Windows NT domain 

• has default proxy for https 

Cons: 

• application proxy only 

20 • does not support load balancing/fault tolerance setup of firewall 

• turns off logging on disk/log full error - bad for auditing and security 

• no default proxy for SQL*Net 

• poor performance 

25 Trusted Information Systems Gauntlet 
Pros: 

• extensive logging 

• source code can be inspected by customer 
30 • respectable market share 

• supports firewall load balancing/fail over 
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• has default proxy for https 

• has default proxy for SQL*Net 



Cons: 

• stops logging when disk full - bad for auditing purposes 

• application proxy with basic packet filtering 



Firewall Design 



10 Depending on who you ask, there are three or four types of common firewall designs 
- packet filter, circuit proxy, application gateway, and statefiil packet filter. These 
may be briefly described in the portion of the descriptions below. The two most 
common firewall designs in use today - application gateways and statefiil packet 
filters. 

15 

Packet Filters 



Packet filtering is the most basic form of firewall protection and consists of 
selectively routing packets between internal and external hosts by either the type of 

20 packet, the originating host address, the target host address, or the services 

requested. In reality, this is no different from filtering provided by regular routers. In 
a firewall environment, though, the filtering rules are generally more stringent. And 
the firewall software may be optimized to perform route filtering. 
Packet filters are good because they are fast, but they lack the complete state and 

25 context of a conversation. Therefore, they are rather vulnerable to spoofing and other 
exploits. While OSI layers 2 and 3 information is important, information in high 
layers is significant as well in a security context. 

Circuit Proxy 



30 
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A circuit proxy regulates connections between clients on the internal network and 
servers on the public network (and, if security policy permits, vice versa) by forcing 
both client and server to address their packets only to the proxy running on the 
firewall bastion host. These connections are established in accordance with the same 
5 types of rules as those governing packet filters and are based on the IP addresses and 
port numbers of client and server. 

Unlike a packet filter, circuit proxy funnels all traffic through a single IP port 
(usually 1080) instead of using a different port number for each application. If a 
client on the public network opens a session with a server on the internal network, 
10 the client has no way to learn the actual DP address of the server at the other end of 
the connection, since the circuit proxy intercepts all the packets. 

Like packet filters, circuit proxies operate at OSI layers 2 and 3 and lack complete 
information about a network conversation. Furthermore, circuit proxies are not 
15 transparent and may require modifications to the usage of the client and server. For 
this reason, circuit proxies are typically not used today. 

Application Gateway/Proxy 

20 Unlike packet filters and circuit proxies, application gateways (AG) inspect the data 
portion of the packets and make security decisions based on the nature of the 
application. Operating at the top of the TCP/IP protocol stack, application gateways 
take users' requests for Internet services (such as FTP and Telnet) and forward them, 
as appropriate, according to security policy, to the actual services. 

25 

Application gateways have the opposite problem of packet filters. These proxies 
operate at the upper layers of the OSI model. While there is important information in 
the data portion of the packet, lower layer information is still significant. The proxies 
typically track state information in the session layer. This is also the reason why 
30 application proxies do not work for stateless (or connectionless) protocols. 
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Application gateways typically rely on the underlying TCP/IP stack to securely 
handle packets. This is the reason why many application gateway-based firewalls 
(like Secure Computing's BoderWare and Sidewinder) are packaged with a hardened 
operating system. 

5 

An application gateway can, for example, restrict an internal user from accessing 
certain Web sites by name or by the time of day. Or for FTP service, the gateway can 
control whether files can be downloaded from the outside or be sent from the inside. 
In addition, the application gateway can be set up to log certain commands that 
10 packet filters simply have no knowledge of. Because these gateways have more 
knowledge of the protocol and examine more information, they are generally 
considered to be more secure. The consequence of this is that application gateways 
generally have lower performance. 

1 5 Stateful Packet Filter 

Stateful packet filtering (SPF) was invented and patented by Check Point (maker of 
FireWall-1). SPF maintains the state of all communications layer - OSI layers 2 
through 7. Thus it has the necessary context data to determine whether to accept or 
20 reject a packet. This determination may rely on the packet information, but can also 
depend on previous packets that have been exchanged (the context) that the current 
packet is a part of. 

For example, FireWall-1 's stateful inspection starts at layer 2, and works all the way 
25 through layer 7, extracting key information from each layer, in order to determine the 
nature of the session. The inspection engine is capable of identifying information at 
any location in a packet (regardless of the OSI layer of that information) and using 
that information to decide the disposition of a packet, and/or store that information 
for future use in the security analysis process. 

30 

Stateful packet filters are less granular than application gateways because SPFs do 
not have application-level knowledge. They have no knowledge of the different 
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commands in the application protocol, for example. On the other hand, SPFs 
generally have better performance. 

Comparison 

Most firewall products today are divided between application gateway (Raptor 
Eagle, TIS Gauntlet, CyberGuard) and stateful packet filtering (Check Point 
FireWall-1, Cisco PIX, Sun SunScreen). As such, the following table is generated to 
compare these two technologies. 

In addition, while application gateways are generally considered to be more secure, 
that security results from the ability to filter commands and data at the session and 
application layer. Proxies have been primarily used to control outbound traffic. It is 
uncertain the kind of protection they offer for inbound traffic. For example, a HTTP 
proxy can control users from accessing certain Web sites at certain hours. However, 
these controls generally do not apply to inbound traffic. The following table details a 
Traffic Matrix. 





Application Gateways 


Stateful Packet Filter 


Security - 
Outbound 


S More - Finer 
control over the application 
service; can filter on actual 
commands within the 
protocol 


* Less - Less granular 
control over service 


Security - Inbound 


Slightly more - 
Constructs new packet; not 
susceptible to out of band 
attacks 


Slightly less - 
Packets forwarded instead 
of reconstructed; 
susceptible to out of band 
attacks 


Performance 


* Lower - Examines 


S Higher - Examines 
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Application Gateways 


Stateful Packet Filter 




more information deep in 
the upper layer of OSI 


each packet to varying 
level of depth 



Final Recommendation 

5 Check Point Firewall -1 was selected as the firewall of choice. With security and a 
great management interface, Check Point's Firewall -1 breezed through all the test. 
The Stateful-inspection firewall sets up access rules for virtually any condition. 
From a performance standpoint, Check Point Firewall -1 matched most if it's 
competitors however, performance is far less important than security or 
10 management, and Firewall -1 excelled in both. 

IMPLEMENTING VB WITHIN RETA 

15 This portion of the description provides information on how to implement an 
eCommerce application based on the ReTA architecture using the Visual Basic 
programming language (VB). The ReTA architecture defines a set of COM 
(Microsoft's Component Object Model) Interface standards for creating application 
components. This portion of the description describes how an application can be 

20 created by writing Activity, Sub Activity and Business Object components to the 
ReTA interfaces. It describes the VB implementation of COM objects, the process 
for creating each type of component and gives examples of a VB implementation of 
an Activity, Sub Activity and Business Object component. 

25 Figure 122 is a diagram of the Activity Framework classes with the 
VB Activity Wrapper 12200. 

VB Implementation of COM Objects 
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Implementing components based on existing COM Interfaces 

The COM component model allows components to be created in any supported 
language. To implement a ReTA application in VB, one has to create Business 
5 Objects, SubActivities and Activity components that implement the ReTA COM 
Interfaces. The ReTA Interfaces are defined in Interface Definition Language (IDL) 
files which are then compiled into machine readable Type Libraries. To implement 
an interface in VB you must reference the Type Library in the Visual Basic project. 
You then create a VB Class module. The first line of the class module describes that 
10 the class implements a COM interface: 

Implements Interface Name 

Once this line is added, the VB compiler may force you to provide an 
1 5 implementation for every method defined in the interface. The method name must be 
prefixed by the interface name followed by an underscore. For example the 
IRETAEditable interface has a method setValue. You must provide an 
implementation for this interface using the method name IRETAEditable_setValue. 

20 Tip: Use the class browser to view the methods required in the interface. The 
browser provides a VB description of the method signature. 

In and Out parameters in a method signature 

25 The DDL for a method describes all the parameters for that method and the return 
type. For each parameter it defines whether the parameter is an In (input), Out 
(output) parameter, or a combination of both. For In parameters this corresponds to a 
ByVal parameter in Visual Basic. For In/Out parameters this corresponds to a ByRef 
parameter (the default). VB does not support Out only parameters. 

30 

You must ensure that the implementation exactly matches the interface specification, 
including the ByRef keyword if necessary, or the VB compiler may return the error: 
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10 



• Compile Error: Procedure declaration does not match description of event or 
procedure having the same name. 

• COM Object references in a method signature 

• If a method signature has a COM Interface then you must add a reference to 
the Type Library of that Interface to the VB Project. 

• COM IUnknown Interfaces in a method signature 

• You cannot implement an interface in VB id if that interface has an 
IUnknown reference. 

Custom interfaces verses Automation interfaces 



To implement the Automation interface that is used to late bind to the component it 
is necessary to provide Public methods for each interface method. These Public 
15 methods have exactly the same name as the Interface method. These public methods 
simply call the custom interface methods defined above. 



Creating ReTA Business Objects, Sub Activities and Activities 
Business Objects 

20 

Business Objects must implement the IRETAEdi table interface that allows the 
ReTA architecture to get and set attributes of the object using string labels. 

SubActivities 

25 

SubActivities must implement the IRETASubActivity interface. The table describes 
what implementation must be provided for each method. 



Method Name 


Required Implementation 


initialize 


Implement any initialization code for the SubActivity including storing a 
reference to the parent Activity passed as a parameter 
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necessary to clean up, if any. 


l/UlllllllL 
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SubActivity 


getActivity 


This should return a reference to the parent Activity stored in the 

1 n 1 f 1 d\'\ r 7 1K1€*\riC\f\ 
HULldllZit/ lllt/lllLJtl. 


getName 


This should return the name of the SubActivity 




1 Ilia oIHJUlU UllCt/l^ LllclL all 11 IC DUolllt/oo vJL7JCl/Lo ICtJUlICtl LKJl LI1C CACtUlC 
illt/LllUti CUt/ ClV CUldUlt/ 111 Lilt/ / VV/ll V 1 IV t'WllLt/A. 1 CLl Itl 1 t/LLll 11 \J ±\Jl oUtv^OO \Ji 

1 for error 


precondition 


Implement any code necessary as a precondition for the execute method, 
if any. 


execute 


This is where the business logic for the SubActivity goes. 


postcondition 


Implement any code necessary to clean up after the execute method. 



Activities 

This portion of the description is split into two sub-portions of the description, the 
5 first describing the design of the VB Activity wrapper mechanism and the second 
describing the steps required to implement an Activity in VB. 

Figure 123 illustrates interface relationships. Activity components 12300 are called 
by the Java VB Activity wrapper component 12302. The Java VB Activity wrapper 
10 component provides the default implementation for an Activity. One has to 
implement a IVB Activity interface which defines a subset of the IAF Activity 
interface. 

IRETAActivity, IRETAContext, IRETAEventListener - As existing interfaces 

15 
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IVB Activity 12304 - Methods that developers needs to implement in their VB 
Activity components 

IRET A VB Activity Wrapper 12306 — Method to give a reference of the VB Activity 
component to the Wrapper 

5 

Views 

The views map the UI widgets to attributes of business objects. The Java activities 
can build views from a set of predefined Java classes. The VB activities build views 
10 from a set of predefined VB Classes. 

Example Customer Lookup Application 

Business Object 

15 

'ReTA demonstration VB Business Object 
'Lester Thomas January 1999 

'All ReTA business objects must implement the IRETAEditable COM interface 
20 The IRETAEditable type library must be referenced by the VB Project 
Implements IRETAEditable 

Private ssn As Integer 
Private name As String 
25 Private Age As Integer 
Private Level As String 

Const retFalse = 0 
Const retTrue = 1 
30 Const retError = -1 

Const s_S SN LABEL = "ssnwidget" 

Const s_NAME_LABEL = "namewidget" 
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Const s_AGE_LABEL = "agewidget" 

Const s_LEVEL_LABEL = "levelwidget" 

Private Sub Class_InitializeO 
5 ssn = 10 

name = "default name" 
Age =21 
Level ="2" 
End Sub 

10 

To implement a Interface method, the method name must be prefixed by the 
interface name. 

? A11 interface methods should be marked private so that they are not visible except 
through the interface 

1 5 Private Function IRETAEditable_setValue(By Val attrib As String, ByVal val As 
String) As Long 

IRETAEditable_setValue = retError 
If attrib = sSSNLABEL Then 
ssn = val 

20 IRETAEditable_setValue = retFalse 

End If 

If attrib = s NAME LABEL Then 
name — val 

IRETAEditable_setValue = retFalse 
25 End If 

If attrib = sAGELABEL Then 
Age — val 

IRETAEditable_setValue = retFalse 
End If 

30 If attrib = s_LEVEL_LABEL Then 
Level = val 

IRETAEditable setValue = retFalse 
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End If 
End Function 

5 To implement an Interface method, the method name must be prefixed by the 
interface name. 

'All interface methods should be marked private so that they are not visible except 
through the interface 

Private Function IRETAEditable_getValue(ByVal attrib As String, val As String) As 
10 Long 

IRETAEditable_getValue = retError 
If attrib = s S SN LABEL Then 
val = ssn 

IRETAEditable_getValue = retFalse 
15 End If 

If attrib = sNAMELABEL Then 
val = name 

IRETAEditable_get Value = retFalse 
End If 

20 If attrib = sAGELABEL Then 
val = Age 

IRETAEditable_getValue = retFalse 
End If 

If attrib = s LEVEL LABEL Then 
25 val = Level 

IRETAEditable_getValue = retFalse 
End If 
End Function 

' For the dispatch interface, VB just exposes the public functions. 
30 Therefore we must provide the dispatch interface public methods manually 

Public Function setValue(ByVal attrib As String, ByVal val As String) As Long 
setValue = IRETAEditable_setValue(attrib 5 val) 
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End Function 

Public Function getValue(ByVal attrib As String, val As String) As Long 
get Value = IRETAEditable_getValue(attrib, val) 
5 End Function 



SubActivity 

10 f ReTA demonstration VB SubActivity Object 
'Lester Thomas January 1 999 

? A11 ReTA SubActivity objects must implement the IRET AS ub Activity COM 
interface 

1 5 The ERETASub Activity type library must be referenced by the VB Project 

Implements IRETASubActivity 

Private m name As String 

Private m_IRETAActivity As IRETAActivity 

20 

Const retFalse = 0 

Const retTrue = 1 

Const retError =-1 

25 The SubActivity abort transaction mechanism needs to be validated 

Private Function ERETASubActivity_abort(ByVal eventCollectionln As 
IRETAEventCollection) As IRETAEventCollection 
'insert any additional code needed for the abort 
Set IRETASubActivity_abort = eventCollectionln 
30 End Function 

'this method checks that all the objects required for the execute are present in the 
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f Activity context. It returns retFalse or retError. 
Private Function ERETASubActivity_checkRequestedObjects(ByVal 
eventCollectionln As IRETAEventCollection) As Long 
Dim ActivityContext As IRETAContext 
5 Set ActivityContext = m_IRETAActivity 

Dim label As String 
label = "lurkingCustomerKey" 
IRET ASub Acti vity_checkRequestedObj ects = 
1 0 ActivityContext.containsKey(label) 
End Function 

'The SubActivity commit transaction mechanism needs to be validated 
Private Function IRETASubActivity commit(ByVal eventCollectionln As 
1 5 IRETAEventCollection) As IRETAEventCollection 

' Get the object's ObjectContext. 

Dim ctxObject As ObjectContext 

Set ctxObject = GetObjectContext() 

' call SetComplete. 
20 ctxObj ect. SetComplete 

Set ctxObject = Nothing 
End Function 

Private Function IRETASubActivity_execute(ByVal resultln As IRETAResult, 
25 ByVal eventCollectionln As IRETAEventCollection) As IRETAResult 

'get the Customer Object from the Activity Context and add the default values 
'for this example we may not get the values from the database 

30 'We need to use the IRETAContext interface of the Activity component 
Dim ActivityContext As IRETAContext 
Set ActivityContext = m JDRETAActivity 
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'this is the label for retrieving the Business Object from the Activity Context 

Dim label As String 

label = "lurkingCustomerKey" 

5 

'We need the event collection as an IUnknown and so use the VB Automation (or 
dispatch) interface 

Dim ecdispatch As Object 

Set ecdispatch = eventCollectionln 

10 

Dim customerObjectdisp As Object 

Set customerObjectdisp = ActivityContext.GetObject(label, ecdispatch) 

'We want the IRETAEditable interface of the Customer Business Object 
15 Dim customerObject As IRETAEditable 
Set customerObject = customerObjectdisp 

'set some values for the names based on the ssn 
'This would normally be a database lookup 
20 Dim ssn As String 

Dim name As String 
Dim Age As String 
Dim Level As String 
Dim Error As Long 

25 

Error = customerObject.getValue("ssnwidget" 5 ssn) 

If ssn = "10" Then 
30 name = "Lester Thomas" 

Age = "29" 
Level = "2" 
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End If 

Ifssn = "20" Then 

name = "Fred Bloggs" 

Age = "23" 
5 Level = "1" 

End If 

Error = customerObject.setValue("namewidget", name) 
Error = customerObject.setValue("agewidget fl , Age) 
1 0 Error = customerObject.setValue("levelwidget", Level) 



label = "realCustomerKey" 

Errir = ActivityContext.addObject(label, customerObjectdisp) 

Dim resultObject As Object 
Set resultObject = resultln 

'add the Customer Business Object to the Result 
Error = resultObject.addResult(customerObject) 

Set IRETASubActivity_execute = resultln 
End Function 

25 This returns the reference to the Activity object 

Private Function IRETASubActivity_getActivity() As IRETAActivity 

Set IRETASubActivity_getActivity = mJRETAActivity 
End Function 

30 This returns the name of the SubActivity 

Private Function IRETASubActivity_getName() As String 
IRETASubActivitygetName = mname 
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End Function 

This initializes the SubActivity and sets the reference to the parent Activity 
Private Function LRJETASubActivity_initialize(ByVal activity As IRETAActivity, 
5 ByVal eventCollectionln As IRETAEventCollection) As IRETAEventCollection 

mname = "CustomerLookup.SARETACustDetailsRetrieve" 

Set m_IRETAActivity = activity 

Set IRETASubActivity initialize = eventCollectionln 
End Function 

10 

This executes any preconditions required to execute SubActivity 

Private Function IRETASubActivity_precondition(ByVal eventCollectionln As 

IRETAEventCollection) As IRETAEventCollection 

Set IRETASubActivity_precondition = eventCollectionln 
1 5 End Function 

This executes any postconditions required to clean up after SubActivity 
Private Function IRETASubActivity_postcondition(ByVal eventCollectionln As 
IRETAEventCollection) As IRETAEventCollection 
20 Set IRETASubActivity_postcondition = eventCollectionln 
End Function 

'Dispatch interface. These methods simply call the Custom interface methods above 
25 Public Function abort(ByVal eventCollectionln As IRETAEventCollection) As 
IRETAEventCollection 

Set abort = IRETASubActivity_abort(eventCollectionIn) 
End Function 



30 



Public Function checkRequestedObjects(ByVal eventCollectionln As 
IRETAEventCollection) As Long 
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checkRequestedObjects = 
IRETASubActivity_checkJlequestedObjects(eventCollectionIn) 
End Function 

5 Public Function commit(ByVal eventCollectionln As IRETAEventCollection) As 
IRETAEventCollection 

Set commit = IRETASubActivity commit(eventCollectionln) 
End Function 

10 Public Function execute(ByVal resultln As IRETAResult, ByVal eventCollectionln 
As IRETAEventCollection) As IRETAResult 

Set execute = IRETASubActivity_execute(resultIn, eventCollectionln) 
End Function 

1 5 Public Function getActivity() As IRETAActivity 

Set getActivity = IRETASubActivity_getActivity() 
End Function 

Public Function getName() As String 
20 getName = IRETASubActivity_getName() 
End Function 

Public Function initialize(ByVal activity As IRETAActivity, ByVal 
eventCollectionln As IRETAEventCollection) As IRETAEventCollection 
25 Set initialize = IRETASubActivity_initialize(activity, eventCollectionln) 
End Function 

Public Function precondition(ByVal eventCollectionln As IRETAEventCollection) 
As IRETAEventCollection 
30 Set precondition = IRETASubActivity_precondition(eventCollectionIn) 
End Function 
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Public Function postcondition(ByVal eventCollectionln As IRETAEventCollection) 
As IRETAEventCollection 

Set postcondition = ]RETASubActivity_postcondition(eventCollectionIn) 
End Function 



Activity 

Implements LAFVBActivity 
10 Implements IAFEventListener 



Const COMFalse = 0 
15 Const COMTrue = 1 
Const COMError = -1 



" SubActivity and BO Labels 
20 Const s_REAL_CUSTOMERLOOKUP_BONAME = "realCustomerKey" 
Const s_SARETACUST_DETAILS_RETRIEVE = 
"VBApp.SARETACustDetailsRetrieve" 
Const s_SARETACUST_DETAILS_COMMIT = 
"CustomerLookup.SARETACustDetailsCommit" 



"Page information for View Mapping 

Const s_CUSTOMERLOOKUP_STARTPAGE = 

"/ASP/EXAMPLEPAGES/ASPA^BCUSTOMERLOOKUP/INDEX.ASP" 
30 Const sCUSTOMERLOOKUPFORMNAME = "customerLookupForm" 
Const s_CUSTOMERLOOKUP_TEXTBOX = "ssnTextBox" 
Const s_CUSTOMERLOOKUP_BONAME = "lurkingCustomerKey" 
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Const s_CUSTOMERLOOKUP_LOOKUPPAGE = 

M /ASP/EXAMPLEPAGES/ASPA^BCUSTOMERLOOKUP/LOOKUP.ASP n 
Const s_CUSTOMERLOOKUP_LOOKUPFORMNAME = "customerMaintForm" 
5 Const s_CUSTOMERLOOKUP_NAME_TEXTBOX = "nameTextBox" 
Const s_CUSTOMERLOOKUP_AGE_TEXTBOX = "ageTextBox" 
Const s_CUSTOMERLOOKUP_LEVEL_DROPDOWN = "levelDropDown" 

Const s_SSN_LABEL = "ssnwidget" 
1 0 Const s_NAME_LABEL = "namewidget" 
Const s_AGE_LABEL = "agewidget" 
Const s_LEVEL_LABEL = "levelwidget" 

Dim m_id As String 

15 

Private Declare Function CoCreateGuid Lib "OLE32.DLL" (pGuid As GUID) As 
Long 

Private Const S_OK = 0 f Return value from CoCreateGuid 

20 

Private Type GUID 

Datal As Long 

Data2 As Integer 

Data3 As Integer 
25 Data4(7) As Byte 
End Type 



30 Private Sub Class_Initialize() 
Dim IResult As String 
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IResult = GetGUDDString 

m_id = "AFVBACustomerLookup" & IResult ' & add the result of the 
CoCreateGuid Function 

5 

End Sub 

Public Function GetGUIDString() As Variant 

10 Dim IResult As Long 
Dim IGuid As GUID 
Dim strGuid As String 
Dim strTemp As String 
Dim intCtr As Integer 

15 

IResult = CoCreateGuid(lGuid) 

IflResult = S_OK Then 

20 strTemp = Hex(lGuid.Datal ) 

strGuid = String(8 - Len(strTemp), "0") & strTemp 

strTemp = Hex(lGuid.Data2) 

strGuid = strGuid & "-" & String(4 - Len(strTemp), "0") & strTemp 

25 

strTemp = Hex(lGuid.Data3) 

strGuid = strGuid & "-" & String(4 - Len(strTemp), "0") & strTemp 

strTemp = Hex(lGuid.Data4(0)) 
30 strGuid = strGuid & "-" & String(2 - Len(strTemp), "0") & strTemp 

strTemp = Hex(lGuid.Data4(l)) 
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strGuid = strGuid & String(2 - Len(strTemp), "0") & strTemp & "-" 

For intCtr = 2 To 7 

strTemp = Hex(lGuid.Data4(intCtr)) 
5 strGuid = strGuid & String(2 - Len(strTemp), "0") & strTemp 

Next 

GetGUIDString = strGuid 
10 End If 

15 End Function 

************ Members of the IAFVBActivity Interface 

20 *************************************** 

I* ******* ******************************** *************************** 
************************* 

25 'this procedure captures the value entered on this page of the activity 

Function IAFVBActivity_capture(ByVal activity As IAFContext, ByVal 
eventCollection As IAFEventCollection) As Long 

Dim ecdispatch As Object 
30 Set ecdispatch = eventCollection 

Dim i As Integer 



-557- 



Dim page As String 

Dim Customer As LAFEditable 

Dim Error As Long 

5 

" Capture all the view changes for the previous page 

■ Get the object's ObjectContext. 
10 Dim ctxObject As ObjectContext 

Set ctxObject = GetObjectContext() 

Dim sessionObj As Session 

Set sessionObj = ctxObject("Session") 

15 

Dim res As Request 

Set res = ctxObject("Request") 

f Get the last page 
20 Dim theSession As IAFSession 

Set theSession = sessionObj. Contents("AFSession") 

page = theSession.getLastPage() 

25 " AFUtility theRequestUtility=new AFUtility(); 
Ifpage = "" Then 

" Can not retrieve the last page 
IAFVBActivity_capture = COMError 
Exit Function 

30 End If 

" Retrieve the views for the current page 
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**** THERE ARE NO VIEWS YET, SO ILL JUST MAP THE VALUES 
HERE ****** 

Dim formValue As String 
5 If UCase(page) = s_CUSTOMERLOOKUP_ST ARTP AGE Then 



10 



15 



"get the Business object to map the values too 

Set Customer = activity. GetObject(s_CUSTOMERLOOKUP_BONAME, 
ecdispatch) 

" capture mapping to SSN textbox 

formValue = res.QueryString(s_CUSTOMERLOOKUP_TEXTBOX) 
Error = Customer, set Value(s_SSN_LABEL, formValue) 
End If 

If UCase(page) = s_CUSTOMERLOOKUP_LOOKUPPAGE Then 



"get the Business object to map the values too 
20 Set Customer = 

activity. GetObject(s_REAL_CUSTOMERLOOKUP_BONAME, ecdispatch) 

" capture mapping to name textbox 

formValue = res.QueryString(s_CUSTOMERLOOKUP_NAME_TEXTBOX) 
25 Error = Customer.setValue(s_NAME_LABEL, formValue) 

" capture mapping to age textbox 

formValue = res.QueryString(s_CUSTOMERLOOKUP_AGE_TEXTBOX) 
Error = Customer, set Value(s_AGE_LABEL 5 formValue) 

30 



" capture mapping to level textbox 
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form Value = 

res.QueryString(s_CUSTOMERLOOKUP_LEVEL_DROPDOWN) 
Error = Customer, set Value(s_LEVEL_LABEL, form Value) 

5 End If 



10 

IAFVBActivity_capture = COMFalse 
End Function 

Function IAFVBActivity_createSubActivity(ByVal subActivityName As String, 
1 5 ByVal eventCollection As IAFEventCollection) As lAFSub Activity 
Dim subActivity As IAFSubActivity 
Set subActivity = Great eObject(subActivityName) 

Set IAFVBActivity_createSubActivity = subActivity 
20 End Function 

Function IAFVBActivity_getRequestedObjects(ByVal inSession As IAFContext, 
ByVal inActivity As LAFContext) As Long 

IAFVBActivity_getRequestedObjects = COMFalse 
25 End Function 

Function IAFVBActivity_getUIFieldValue(ByVal inActivity As IAFContext, ByVal 
page As String, ByVal formName As String, ByVal fieldName As String, ByVal 
eventCollection As IAFEventCollection) As String 
30 " Use the View Mechanism to get the values from the BObjects 
Dim ecdispatch As Object 
Set ecdispatch = eventCollection 
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Dim AttributeValue As String 
Dim Error As Long 
Dim Customer As LAFEditable 
Dim label As String 

5 

If page = Then 

" Can not retrieve the last page 
IAFVBActivity_getUIFieldValue = COMError 
Exit Function 
10 End If 

" **** THERE ARE NO VIEWS YET, SO ELL JUST MAP THE VALUES 
HERE ****** 

1 5 If UCase(page) = s_CUSTOMERLOOKUP_ST ARTP AGE Then 
"get the Business object to map the values too 

Set Customer = inActivity.GetObject(s_CUSTOMERLOOKUP_BONAME, 
ecdispatch) 
20 label = s_S SNLABEL 

" capture mapping to SSN textbox 

Error = Customer.getValue(s_SSN_LABEL, (AttributeValue)) 

IAFVBActivity_getUIFieldValue = AttributeValue 
25 End If 

If UCase(page) = s_CUSTOMERLOOKUP_LOOKUPP AGE Then 

"get the Business object to map the values too 
30 Set Customer = 

inActivity.GetObject(s_REAL_CUSTOMERLOOKUP_BONAME 5 ecdispatch) 
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" capture mapping to name textbox 

Error = Customer. get Value(s_NAME_LABEL, (Attribute Value)) 
IAFVBActivity_getUIFieldValue = AttributeValue 

" capture mapping to age textbox 
5 Error = Customer.getValue(s_AGE_LABEL, (AttributeValue)) 

IAFVBActivity_getUIFieldValue = AttributeValue 

" capture mapping to level textbox 

Error = Customer.getValue(s_LEVEL_LABEL, (AttributeValue)) 
IAFVBActivitygetUIFieldValue = AttributeValue 
10 End If 



1 5 IAF VB Acti vity_getUIField Value = COMFalse 
End Function 

Function IAFVBActivity_postcondition(ByVal eventCollection As 
LAFEventCollection) As Long 
20 IAFVBActivity_postcondition = COMTrue 
End Function 

Function IAFVBActivity_precondition(ByVal eventCollection As 
LAFEventCollection) As Long 
25 IAFVBActivity__precondition = COMTrue 
End Function 

Function IAFVBActivity_getPageParameter() As String 
'this returns the UI fields we require for this page 
Dim parameters As String 
30 'get the page we are on 

Dim obj Context As ObjectContext 
Set objContext = GetObjectContextQ 
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Dim page As String 
Dim res As Request 
Set res = objContext("Request") 
5 page = res.ServerVariablesC'^CRIP^NAME") 
parameters = "" 

If UCase(page) = s_CUSTOMERLOOKUP_STARTPAGE Then 

10 parameters = " + portion of the present 

description.customerlx)okupForm.ssnTextBox.name + + escape(portion of the 
present description.customerLookupForm.ssnTextBox.value) 11 

End If 

15 

If UCase(page) = s_CUSTOMERLOOKUP_LOOKUPPAGE Then 

parameters = " + portion of the present 
description.customerMaintForm.nameTextBox.name + 1=1 + escape(portion of the 
20 present description.customerMaintForm.nameTextBox. value) + •&'+ portion of the 
present description.customerMaintForm.ageTextBox.name + f - + escape(portion of 
the present description.customerMaintForm.ageTextBox.value) + '&'+ portion of the 
present description.customerMaintForm.levelDropDown.name + + escape(portion 
of the present description. customerMaintForm.levelDropDown.selectedlndex) " 

25 

End If 

IAFVBActivity_getPageParameter = parameters 
End Function 

30 
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******************************************************************** 
* * * * * * * * * * * * * * * * * * * * * * * * * 

t* ********** Members of the IAFEventListener Interface 
************************************* 

^ ******************************************************************** 

************************* 

'this method returns a unique string ED for this component 
Function IAFEventListener_getId() As String 
10 IAFEventListener_getId = m_id 
End Function 

Function IAFEventListener_receiveEvent(ByVal theEvent As Long, ByVal 
eventCollection As LAFEventCollection) As Long 
LAFEventListenerreceiveEvent = COMFalse 
1 5 End Function 

INTERNETWORKING GATEWAYS 

Figure 124 illustrates a method 12400 for providing a global internetworking 
20 gateway architecture in an e-commerce environment. In operation 12402, an Internet 
is provided. A plurality of gateways each situated in a distinct geographic location 
are coupled to the Internet in operation 12404. A wide area network, separate from 
the Internet, is coupled to each of the gateways in operation 12406 for providing 
communication between the wide area network and the Internet. In operation 1 2408, 
25 a central database is coupled to the wide area network for providing a central storage 
for data used in e-commerce carried out over the Internet. 

Optionally, the gateways may be intercontinental. For providing fault and 
performance management, a central management station may also be coupled to the 
30 wide area network. 
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Preferably, one of the gateways includes a screening router coupled to the Internet 
via an Internet service provider, a firewall connected to the screening router, and a 
choke router coupled between the wide area network and the firewall. In one 
optional version of this embodiment, a pair of gateways may be provided along with 
5 a pair of screening routers, a pair of firewalls, and a pair of choke routers. In another 
optional version of this embodiment, a plurality of servers may be coupled to the 
firewall for storing the data. As a further option, a second wide area network may be 
connected to the firewall via a screening router. The following material provides a 
more detailed description of the above-described method. 

10 

Summary 

Today's internetwoking environment requires connections from the corporate 
1 5 network to a variety of resources. These include clients and partners, vendors and 
suppliers, the Internet and remote users, just to name a few. This interconnectivity 
leads to complex security issues that need to be addressed. 

The problems associated with connecting the network to the vast Internet are widely 
20 published. Hackers abound, and new methods for compromising networks are 

published almost daily. However, what about connecting the network to a partner for 
project collaboration, or perhaps a supplier for automatic inventory control? One 
might trust their supplier, however, does one really know how well their network is 
secured? Contracts and Service Levels can and should deal with many of these 
25 issues, however, technology can also be used to enforce security policies. 

This is what a flexible Internetworking Gateway is designed to do: interconnect 
resources while maintaining an acceptable level of security and functionality. 

30 Introduction 
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The purpose of this portion of the description is to demonstrate a secure way to 
interconnect external resources and the corporate Wide Area Network (WAN). 
There is an underlying assumption that by the time one is reading this, several tasks 
have been accomplished, and one is ready to start architecting a solution. These 
5 tasks include a definition of security policy and philosophy, and a definition of 
requirements. While citing specific solutions, this paper provides a framework for 
architecting an Internetworking Gateway based on "middle of the road" assumptions 
on security levels and requirements. These assumptions are oulined below. 

1 0 Requirements 

The underlying requirements of the Internetworking Gateway are fairly simple: 

Extranet: Fast, dedicated links to partners, clients, vendors, suppliers, and remote 
users via an Extranet. 

15 Internet: Connect the WAN to the Internet for WAN users to access the Internet, 
all Internet users to access public company resources via a web server, and remote 
users on the Internet to access resources on the WAN. 

Policy 

20 The security policy states a company's acceptable level of risk, and what the gateway 
is protecting. This could range anywhere from proprietary information, customer 
records, personal reputation, and may depend on the company. The following "5 
A's" are typical foundations defined in a security policy that are important to keep in 
mind: 

25 

Authentication: Identification and authentication that the user is who he says he is. 
Company X may solve and promote strong authentication by providing a global 
authentication service via mirrored and replicating authentication servers. 
Access Control: Company X may require a baseline set of access control rules on all 
30 gateways, and may maintain and update the policy that drives this "generic ruleset". 
In addition, access control rules specific to new sites, and changes to site 
requirements, may drive additional access controls on top of these baseline rules. 
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Alarming: Alarms may be sent to local and central administrators in the event of an 
Alarm condition. An example would be multiple failed attempts by an outside user 
to intrude through the gateway. 

Auditing and Logging: Auditing and Logging may be provided by the gateways to 
5 record major events for security and management purposes. 

Availability: Often referred to as Performance Management, certain processes and 
periodic jobs may run to log and transmit performance data to ensure availability of 
networking and systems capabilities. The Service Provider may also provide reports 
to local and central management. Administrators may work to compare 
10 performance metrics with baselines and provide proactive capacity planning. 

Philosophy 

The security philosophy includes the following concepts: 

15 

Least Privilege- Any entity should only have the access required to perform its 
tasks. 

Defense in Depth- The use of multiple security measures to ensure that failure of 
one system or process does not result in total compromise. 
20 Choke Point- Forcing attackers to use centralized and known attack points to allow 
Access Control and Monitoring. 

Fail-Safe Stance- Security systems that do fail should close (like a circuit breaker) 
access points instead of leaving them open. The cost of this stance is that Fail-Safe 
may yield a temporary system outage to both illicit and legitimate users due to the 
25 failure. 

Default Deny- By default, that which is not expressly permitted is denied. 
Universal Participation- The idea that some users may not choose to circumvent 
security systems and mechanisms (e.g. by alternate paths) 

Diversity of Defense- To the greatest extent possible, a variety of types of systems 
30 may be leveraged as security devices to protect the environment. 
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Simplicity- Security mechanisms should be as simple as possible to facilitate 
understanding of the mechanisms and to avoid errors in configuration due to 
unnecessary complexity. 

Separation of Duties- Administration and Security functions should be separated at 
5 all times. It is unreasonable to expect effective security and effective systems 
administration when these functions are performed by a single organization or 
individual. 

The Internetworking Gateway Architecture is the direct manifestation of the above 
10 requirements, the security policy standard and the security philosophy. 

Simple Architecture High Level Internetworking Gateway Architecture 

The typical components of a gateway may include routers, firewalls, hubs, switches 
15 and servers. Each one of these components may perform a different role to 

accomplish the goals described in the security policy, philosophy and requirements 
portion of the present descriptions. A simple high level internetworking gateway 
architecture is shown in Figure 124.1. Each component of the architecture is 
described in detail below. 

20 

Firewall 12430 

Until recently a typical discussion of firewalls would begin with: "there are three 
different types of firewalls: application gateways, circuit level gateways, and packet 
25 filters." However, most commercial firewall products available today combine 
features from all three types to provide security, performance and manageability. 
Each product has evolved from one of these three, but the major vendors incorporate 
all three technologies in one firewall product. 

30 So what is a firewall? A firewall is typically a computer with a variation of the 

UNIX derived operating system (or it could run on a Windows NT platform) that has 
several Network Interface Cards (NIC's). Some firewalls are software based, and 
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are installed on a variety of hardware platforms, while others come preinstalled on 
the vendor's platform. The firewall situates itself in-between networks and enforce 
most of the security policy, as well as provide for several points of the security 
philosophy. The primary roles of the Firewall are Access Control, Authentication, 
5 Auditing and Logging, and Alarming. In addition, any good firewall also conforms 
to the security philosophy by adhering to the failsafe stance, providing default deny, 
and providing simple management. 

In other words, the firewall controls what network traffic is allowed to pass through 
10 the gateway based on who the user is, where the user is, and what the user is trying 
to do. At the same time the firewall is logging all of the network traffic and actively 
monitoring the logs for suspicious activity. If anything suspicious is observed, the 
firewall may notify an operator of a problem and shut itself down if necessary. 

1 5 Routers 

An internetworking gateway architecture calls for a router on most interfaces of the 
firewall. These routers perform different roles depending on which interface of the 
firewall they are attached to. A "screening" router 12432,12434 is located on the 
20 Internet or Extranet side of the firewall, and a "choke" router 12436 is located on the 
corporate WAN side of the firewall. 

The Internet screening router 12432, owned either by the company or the ISP, is well 
situated to provide a variety of security tasks. The screening router denies typical 

25 attacks caused by malicious manipulation of IP options flags in the IP header, such 
as source routing and fragmentation attacks. A screening router should also prevent 
all attempts at IP spoofing, including both external users spoofing internal addresses 
as well as internal users spoofing external addresses. In addition, it should block all 
ICMP packets to prevent many well know attacks like the Ping of Death. Finally, a 

30 screening router should mirror the firewall rulesets to provide defense in depth. 
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The Extranet screening router 12434 may perform similar functions as the Internet 
screening router by providing the first layer of defense against the users on the 
Extranet. In addition, there may generally be more than one connection into the 
Extranet screening router. For instance, there may be a Frame Relay connection into 
5 the screening router with virtual interfaces to several different partners and suppliers, 
or there may be several physical interfaces with leased line connections to partners 
and suppliers. It is imperative that the router not bridge different partner networks 
together unless there is an intent to do so. This may dictate strict access control lists 
on this router to prevent any cross communication between client networks. Some 
10 partners may require complete separation, which could be provisioned with a 
dedicated router. 

However, the Internetworking Gateway's primary responsibility is to protect 
resources on the WAN, not the partner's WAN. The partner may presumably have a 
15 similar architecture on their side of the connection for that purpose. It is important 
when connecting to a partner to spell out what security is provided to them, and what 
is not. 

The main function of the choke router is to maintain a level of security even if the 
20 firewall is compromised. This requires that the access control lists on the router 
mirror the firewall rulesets. As a result, it prevents an intruder from retrieving any 
useful information on the WAN prior to the intrusion being detected.. In addition, 
the choke router should perform the same roles as the screening router on internal 
users. This functionality may depend on the security policy, and how trusted the 
25 internal users are considered. 

The Public Server Segment ("DMZ") 

The Public Server Segment, or "DMZ" 12438, is another network segment off of the 
30 firewall reserved for servers that are meant to be publicly accessible. This may 

include web servers, ftp servers, DNS servers, and mail relays. Often this network 
segment is shown on the Internet side of the firewall between the screening router 
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and the firewall, or in-between two firewalls. There are pros and cons to both 
configurations; however, the majority of the architectures portray the DMZ "leg" off 
of a firewall. 

5 When a web server is placed outside of the firewall, it is only protected by the 

screening router and the web server application. It is difficult to account for remote 
management - content, fault and performance - of the device and one can only rely 
on router filtering for protection. However, there is generally a much higher level of 
performance and reliability if the web server is placed outside of the firewall. This 
10 could be an important consideration for high volume sites. 

Two firewall configurations provide a slightly higher level of security, especially if 
two different vendor's firewalls are used. However, the functionality is basically the 
same but the price is significantly greater. 

15 

Regardless of how this network is architected, the idea of a DMZ is similar for all 
three scenarios. First, only communication relevant to the server is allowed into the 
network (e.g. http traffic allowed to a web server) from the outside world. Second, 
management communication is allowed into the network from management stations 
20 (or users) on the internal WAN. Third, transaction based communication is 
permitted from the public server to necessary places. For example, Cybercash 
transactions would be allowed to the Cybercash servers or database access to back 
end systems might be required. Any access to internal systems should be to mirror 
servers, if at all possible, in order to prevent permanent destruction of data. 

25 

The most important thing to realize is that the DMZ network, although behind a 
firewall, contains machines that are publicly accessible to the Internet. Therefore, 
these machines should be considered extremely suspect, and required to be secured, 
actively monitored, and backed up as frequently as possible. 

30 

Other Important Network Components 
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Specialized Proxy/Cache Servers 

Proxy servers and cache servers may play an integral role in the design of a 
successful Internetworking Gateway. Often these specialized servers may perform 
5 roles such as authentication, access control, accounting and logging, and provide for 
high availability for typically high volume resources. For instance, if the WAN 
contains a large user base that accesses the web frequently, a Web Proxy server can 
authenticate a user, control what sites are accessible or not, keep logs of all web sites 
accessed, and even cache web sites to improve bandwidth performance. This proxy 
10 server 12500 would typically sit between the firewall 12502 and the choke router 

12504, as shown in Figure 125. The firewall would also allow traffic from the proxy 
server to access the Internet without authentication (since the proxy server performs 
this function), as a result reducing the load on the firewall. 

15 Authentication Servers 

Authentication servers, although not a necessary part of the internetworking 
gateway, are an integral part of a company's overall security policy enforcement. 
Most firewalls may contain their own user database that can be used to enforce user 
20 level restrictions. However, an authentication server provides for a centralized place 
to store user's names, passwords, and access levels. This leads to great benefits in 
terms of simplicity of management and design. 

There are many types of authentication standards in the industry, as this aspect of the 
25 gateway is still developing. Some of standards being pushed include RADIUS and 
LDAP. There are also proprietary authentication schemes such as TACACS+ (Cisco 
Systems), the Novell NDS Tree (based on LDAP), and the Lotus Notes Name & 
Address Book (NAB). 

30 Since not all Firewalls are compatible with a certain authentication standards, often- 
existing authentication schemes within a company may dictate which Firewall 
vendor to utilize. 
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DNS 

Similar to Authentication Servers, additional internal DNS servers may not be 
5 required if name resolution and lookup is already available on the WAN. However, 
there is generally a good case to have an external DNS server on the DMZ. This 
DNS server may supply name resolution for Internet users attempting to access any 
public servers, as well as remote users accessing internal servers. Servers within the 
Internetworking Gateways generally require DNS ability as well, but in many cases 
10 the Service Provider may offer to either provide the service remotely, or install the 
service / component on behalf of the implementing site. 

Case Studies 

15 Now that the typical components of an Internetworking Gateway have been defined, 
some more detailed architectures, and the unique considerations that arise from each 
one, may be explored. The different examples include: 

• A high volume/high availability public web server 
20 • A remote dialup gateway 

• An Internet development gateway with partner connections 

High Volume/High Availability Gateway 

25 In order to provide a high volume web site to customers around the world, some 
requirements include: 

• The web servers need access to a central database containing pricing and 
availability information 

30 • The web servers need access to Cybercash to authenticate credit card 

transactions 
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• Short response time 

• High Availability 



These requirements lead immediately to several questions. 

5 

First, what is considered an acceptable level of up time? Is it 95% (down 72 minutes 
per day), or is it 99.9% (down one and a half minutes per day). The main difference 
between the two is cost. Although the high-level security architecture may be the 
same regardless, there may be more built in redundancy to achieve a 99.9% up time. 

10 

Second, what happens to the "user experience" if the gateway switches to a backup 
component. Does the user have to re-authenticate? Does the session hang? If not, 
is there a noticeable lag time or does it all happen seamlessly behind the scenes? 
"Seamlessly behind the scenes" is more difficult to architect and maintain. 

15 

Third, what happens if it's not a component that fails, but an entire facility? This 
could be the result of a natural disaster (Data Centers in earthquake country for 
instance), or a man made disaster such as the proverbial misguided backhoe. This 
may result in not only local fail-over, but remote or maybe even global fail-over as 
20 well. 



Finally, what is going to be stored on the server? If transactions are being made, 
sensitive customer information may be on the web servers. Therefore, the web 
servers should be placed behind a firewall. 

25 

A possible global architecture 12600 is shown in Figure 126. This Internetworking 
Gateway Architecture shows four initial facilities, labeled East Coast 12602, West 
Coast 12604, Europe 12606 and Asia 12608. Each gateway has a connection to the 
Internet 12610 and to the Corporate WAN 12612. The WAN connection provides 
30 access to the centralized database 12614 and to centralized management stations 

12616. The management stations may provide fault and performance management 
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via SNMP, as well as configuration management via machine specific protocols 
(e.g., telnet management of the routers, or ssh management of the firewall). 



Figure 127 shows the West Coast architecture 12700: ACME is headquartered on 
5 the West Coast, therefore, this facility may be the primary location. This location 
may have complete architectural fail-over using OSPF, as well as ISP fail-over and 
load balancing using BGP. The servers 12702 are connected into a fully redundant 
switch 12704 containing both routing and switch modules that is running a product 
equivalent to the Cisco Local Director ®. The Local Director may automatically 
10 distribute load to all available servers. 



Since a specific web page access control level may be required, the web server 
application may have to perform the user authentication and encryption via HTTP 
authentication and SSL. Therefore, the application must perform some fail-over 
1 5 functionality to maintain specific log on sessions. 



Remote Access Solution 



20 



ACME requirements: 



• ACME needs to connect the WAN to an ISP for WAN based Internet Access 

• Secure dialup access directly to the WAN for telecommuters 

• Access via the Internet for traveling employees to POP3 mail servers, 
internal web servers, and an internal news server 

25 • Dialup users may have Intranet and Internet access 



There are several considerations to make when designing a solution. First, since 
Intranet resources may be accessible from the Internet to authorized users, an 
encryption solution may need to be in place. For the web server, the solution could 
30 be SSL, however, this may not work for the POP3 mail server, nor for the news 
server. Therefore, a third party encryption solution may be required. 
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Second, there may be several different machines performing authentication here, 
including the firewall for access to and from the Internet and the dialup server for 
authenticating dialup users. Therefore, it may be beneficial to use a central 
5 authentication server. This can be achieved via a RADIUS server, since most dialup 
servers and firewalls are compatible with the RADIUS protocol. 

Figure 128 shows a typical Remote Access Internetworking Gateway architecture 
12800 that meets these requirements. Depending on the firewall 12802, there are 

10 various different client encryption pieces (SecuRemote for Firewall- 1, Eagle Remote 
for Eagle Raptor), as well as third party products (Alta Vista Tunnel). For this 
architecture, we have assumed that one of the former solutions was chosen. 
However, to use a third party product, one would only need to place a decrypting 
device inside of the firewall, next to the RADIUS server 12804. A user on the 

15 Internet 12806 attempting to reach a server 12808 on the WAN 12810 would step 
through the following process during a typical session: 

The client machine realizes that the user is trying to access predefined servers on the 
Intranet, and initiates an encrypted session with the firewall. 

20 

In addition to a successful key exchange, the firewall requests that the user supply a 
user name and one-time password. This one-time password is generated by a token 
compatible with the RADIUS server. 

25 Upon receipt of the user name and password, the firewall asks the RADIUS server if 
this is a valid user. If the RADIUS server validates the user, then the traffic is 
allowed from the Internet client to the internal server. Otherwise, the traffic is 
blocked by the firewall. 

30 A dial up user would have a slightly different experience. First, when dialing into 
the dialup server, the user would supply a username and one-time password. This 
username and password are validated via RADIUS with the RADIUS server. If 
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validated, the User can then access either the Internet or the Intranet. For Intranet 
access, an encrypted session is set up between the client machine and the firewall 
without authentication for basic services. However, if specific user level access is 
required, then the user should authenticate with the firewall as well. 

A WAN based user would authenticate with the firewall when accessing the Internet. 
The firewall may validate the user via RADIUS, and either allow or deny the traffic 
based on the RADIUS server response. 



10 Internet Development with Partner Collaboration 



Figure 129 illustrates an Internetworking Gateway with Partner collaboration on 
Internet Development. The ACME company 1 2900 is developing an Internet 
application in conjunction with one of its business partners 12902. Requirements: 
15 • The business partner is supplying several software and systems programmers 

on-site to assist with the development. 

• Developers may require unlimited access to the Internet, which is currently 
not allowed through the main Internet gateway. 

• ACME developers need access to WAN resources 

20 • Partner's developers may require access back to their own WAN via a direct 

leased line 

• The business partner has agreed to allow ACME to control access into their 
own network as long as they have audit access to the security devices (router 
ACL's and firewall rules). 

25 

The first consideration to make may depend on corporate policy. Since the ACME 
corporation does not allow unlimited access to the Internet 12904 from the WAN 
12906, the developers may have to be located on a development network that is 
separated from the WAN via a firewall 12908. Resources in this area may be 
30 considered "semi-trusted," in that it is expected that hackers on the Internet may be 
able to break into this network more easily than the WAN. Therefore, special 
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consideration needs to be made in terms of backup and recovery schemes in the 
event of a security incident. 

Access back to the respective WANs may be allowed after authentication. ACME 
users are authenticated via the central RADIUS infrastructure. Partner employee 
user names and ID's are stored on the firewall. 



Management Issues 



10 There are many issues with managing an Internetworking Gateway that should be 

decided up front. Who is in charge of fault management? Configuration and security 
management? Capacity and performance management? Are the gateways managed 
centrally or locally? Or is there some combination? 



1 5 Fault Management 



Fault management can often be grouped with existing management infrastructure, 
such as a network operations center. The addition of gateways, while possibly 
adding new types of hardware, may require many of the same skills in terms of 
20 monitoring and troubleshooting the network. In addition, this group should perform 
many of the following functions: 



• Ensure that network circuits are active and available 

• Configure routers 

25 • Ensure integrity of router configurations 

• Configure DNS systems 

• Collect and analyze capacity and utilization statistics 

• Maintain relationship and contacts with Internet Service Provider 



30 Configuration Management 
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Configuration and security management should consist of the following 
responsibilities: 

• Manage user ID process 

• Administer the firewall policy database 

5 • Create, evaluate and distribute reports of firewall activities 

• Develop tools to collect and analyze firewall statistics for capacity planning 

• Interface with vendor to resolve firewall software issues 

• Install and test all software releases 

• Perform analysis of firewall and DNS server logs 
10 • Perform quality assurance and regression testing 



Security Management 



• Confirm that firewall operations conform to security policy 

15 • Develop tools to collect and analyze firewall statistics for intrusion detection 

• Provide leadership in incident response situations 

• Provide security expertise in analysis of service requests 

• Perform analysis and approval for non-standard service requests 



20 Server Security 



This portion of the description lists recommended practices for a Windows NT 
server environment. The single most important element in ensuring a secure LAN 
server environment is the presence of a knowledgeable and conscientious LAN 
25 server security administrator. In recognition of the extremely important role of this 
administrator, this standard focuses on requirements for LAN server security 
administration. Key items include secure handling of accounts, file and directory 
protection, audit requirements, and physical and environmental security. 



30 NT Security Standard 
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This standard is primarily oriented to Windows NT, It should also be noted that there 
are minimal security differences in a Windows NT workstation and a Windows NT 
server. The differences between the server and workstation are that the server can 
support a domain, contains domain accounts, contains the workstation listing for the 
5 domain, and has the ability to make global groups. The ability to set permissions on 
files, network shares, and create local accounts, local profiles, and local settings are 
exactly the same on the server as the workstation. This portion of the present 
description has attempted to acknowledge where certain standards apply just to 
servers or workstations. 

10 

File Systems 

All Windows NT servers should run the NTFS filing system because it utilizes 
Window NT file and directory security features. NTFS also has a recoverability 
15 feature in case of disk fault or system failure. 

If a Windows NT server does not completely run the NTFS filing system, the non- 
NTFS portion should not be shared over the network. 

20 All workstations that can, may run the NTFS filing system. If a workstation cannot 
run NTFS, additional security measures should be taken according to the filing 
system Windows NT is running on. The standards set forth for that operating system 
should be used in addition to these standards. 

25 Server Security 

Passwords must expire once every sixty (60) days for all accounts except for the 
administrators' accounts, which should expire every thirty (30) days. 

30 A generic printing group is allowed for use by those traveling and visiting an office 
location. Original ID's should still be created for each print user and those ID's 
should only be placed in the printing group. The account is only to be used for 
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printing. All other file and directory access must be prevented through controls on 
the printing group. The account may be used in conjunction with a print server. 

The Password Uniqueness field should be set to remember the last five (5) 
5 passwords of a user. The Minimum Password Age field should be set to Allow 

Changes in seven (7) Days. This may prevent the user from resetting their password 
for a week and may require them to have varying passwords. 

The default for Account Lockout must be set to six (6) bad logon attempts. The Reset 
10 Count for lockouts should be set to 7200 minutes. The Lockout Duration should be 
set to Forever (until admin unlocks). The above selections may allow five (5) 
consecutive incorrect login attempts within a five-day period, before locking up the 
account. When a valid password is entered at any time within the five days, the bad 
logon count may be reset to zero (0). Administrator equivalent accounts should be 
15 set in the same manner. The default administrator id is never locked out and can 
always be used to unlock administrator equivalent accounts. 

The Users must be logged on to change password check box must be selected. 

20 All LAN administrators should have two separate accounts. One account may have 
administrator privileges, and should not be the Administrator account or an account 
with a name easily identifiable as a administrator level account (i.e., JSMITHSUP). 
The other account should have access as a domain user and be used for normal day- 
to-day work that does not require administrator privileges. 

25 

All administrator level access passwords must be changed when a person with 
administrator level access either leaves, or no longer has responsibility for security 
administration. 

30 If groupware ID's are stored on the server, they must be kept in a directory accessible 
only by that individual user (e.g. Home or Personal directory as long as no other 
users can access it). Beware that those with administrative access may be able to 
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access the groupware ID's stored on NT servers. Therefore, distribution of 
groupware ID's and/or passwords must be the responsibility of someone other than 
the NT administrator. 

5 Web Server Security 

Since the web server is the primary interface to the client for all interactions with 
eCommerce applications, an improperly configured web server may leave a business 
susceptible to a variety of security problems, such as disclosure of confidential 
10 information. The following are recommended practices to mitigate security threats. 

Securing a Web Site 



15 



Select server and host technologies that match business's security, 
functionality, and performance requirements and has the least 



vulnerabilities. 



Review the recommended practices that address the configuration and 
operation of the server technology. If possible, also note the sample 
implementation of those practices (e.g. complex, simple, inexpensive, or 



20 



costly). 

Determine the likelihood of particular kinds of incidents and the 
vulnerabilities of specific servers. 

Estimate the differences in operating costs of competing technologies, 
including the business costs of potential security incidents. 



25 



To prevent external traffic from gaining access to the private network, the 
web server should be place on a sub-network, separate from the main internal 



network. 



Use filters or a firewall to restrict traffic from the web server host to the 



30 



internal network. 
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• Turn off source routing at the router so that the web server host cannot be 
used to forward packets to hosts in the internal network. 

• The authoritative copy of your web site content should be stored on a 
separate network inside the network firewall (e.g. internal subnet) rather than 

5 on the web server host. 



By providing the essential network services and operating system services on the 
server host machine, we reduce the number of attacks on host from other services 
and inefficiencies due to compromising software and hardware configurations to 
10 satisfy the different services. After installing the server software, create 

cryptographic checksums or other integrity-checking baseline information for your 
critical system software. 



• Change default configurations to enhance the web server security 

15 • Use either the Common Log Format or the Extended Common Log Format 

• Disable network services such as ftp, and file uploads form web clients that 
are not necessary to run essential services. 

• If one has to remotely administer the web server, be sure to use strong 
encryption to authenticate and transmit data. Also configure server to only 

20 allow administration from one particular host. 

• Limit files access such that: 

• Public web content files and directories are read-only. Files can be written to 
only by the processes that allow for web server administration. 

• Web server log files can be written to by the server processes, but they 
25 cannot be read. They are only readable only by administration processes. 

• Any temporary files created by Web server processes (such as those that 
might be needed in the creation of dynamic Web pages) are limited to a 
particular subdirectory. 

• Disable the server from serving the following to the client: 
30 • File directory listings, even if you intend them to be readable. 
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• Files that are outside the specified file directory tree. (Do not use links in file 
directory tree that point to files elsewhere in the file system.) 

• Own log files or configuration files. (Try to store files outside the public 
data directory tree.) 

5 • After all configuration choices have been made, create and record 

cryptographic checksums or other integrity-checking baseline information for 
your server software. 

If you determine that an auxiliary executable program is necessary, then: 

10 

• Verify that the copy of the program is an authentic copy. 

• Review all material on security vulnerabilities of program and make sure that 
the program does not include any unnecessary functions. 

• Install the program on a test machine and test it to your own satisfaction. 
15 • After installing the program, create new checksums or other integrity- 
checking baseline information for you server software and check the server 
behavior and log files. 

• Administer the web server in a secure manner. 

• Instead of transmitting web material using a network connection through the 
20 firewall where your server may be temporarily disabled, transfer web content 

from the authoritative copy to the public server using a writable CD-ROM or 
diskette. 

• Also do not use a transfer method that mounts a file system from a host 
inside the firewall using NFS. The NFS protocol may make the internal 

25 network vulnerable. 

• When inspecting the server log files from a host other than the server, use a 
CD-ROM and file encryption. 

• After making any changes in server configuration or site content, create new 
cryptographic checksums or other integrity-checking baseline information for 

30 your server. 

• Look for unexpected changes to directories and files. 
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• Review the content of the files and determine the significance and frequency 
with which they should be checked. 

• Maintain authoritative reference data of critical files and directories which 
details its location in file system, shortcuts, contents, size, date of last 

5 modification and access permission settings to it. 

• Verify the integrity and identity any changes in directories and files 
(especially those associated with execution privilege settings) by comparing 
them with your authoritative data. Be sure to access the authoritative 
information from a secure, read-only media. 

10 

Inspect system and network logs. 

Regularly inspect all log files. There are six types of logs - user activity, process 
activity, system activity, network connections, network traffic monitoring, and web 
server activity. 

15 Portion of the present description and investigate any unusual entries that you 

discover (e.g. repeated failed login attempts, connections and processes that run at 
unexpected time, connections from unusual locations). 

Report all confirmed evidences of intrusion to your organization's internal security 
point of contact. 

20 Read security bulletins form trustworthy sources and other security publications 
regularly. 



Additional tips to keep in mind: 

• Network users should never be able to execute arbitrary programs or shell 
25 commands on your servers — e.g. do not configure your web browser to 

automatically run spreadsheets or word processors. Because most 
spreadsheets and word processors these days have the ability to embed 
executable code within their files. 

• Configure web server so that all CGI scripts or programs must be placed in a 
30 single directory. Allow limited access to this directory and it's contents — 
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local users cannot install, change, remove, or edit without review, even 
prevents them from being read. 

The practice of allowing any file on web server with .cig extension to be run 
as CGI script is not recommended. 

CGI scripts that run on your server must perform either the expected function 
or return an error message. Scripts should expect and be able to handle any 
maliciously tailored input. 

Beware of suste(), popen(), pipes, backquotes, an perl's eval() function. 
Avoid spawning subprocesses in CGI scripts and programs. If you must 
spawn subprocesses, avoid any passing through any strings that are provided 
by the user. If you must pass strings from the user to the subprocess, be sure 
that it does not pass shell meta characters. 

Use a program such as tripwire to monitor for unauthorized changes to the 

executables and configurations files on your system. 

Remove the backup files that are automatically generated by your editor. 

Do not NFS mount or export any web server directories. 

Delete all compilers on your web server and any utility programs that are not 

used during boot or by the web server. 

If possible, place your WWW server and all files in a separate directory 
structure. Then wrap the WWW server with a small program that does 
chroot() to the directory. Some WWW servers include this approach as an 
install-time option. 

If one uses directory level access control files, give them a different name 
other than the standard .htaccess 

It is important that the web server password file be inaccessible to normal 
users on the server and to users over the web. 

Do not configure the "helper" applications that are automatically run when 
files of a particular type are downloaded from the net, e.g. provides a way 
from outsiders to run programs on your computer without your explicit 
permission, e.g. a program could be embedded in a HTML page as an 
"included" image. 
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• Do not mix HTTP with anonymous FTP. 

• Do not trust the user's browser. HTML includes the ability to display 
selection lists, limit the length of fields to a certain number of characters, 
embed hidden data within forms, and specify variables that should be 

5 provided to cgi scripts. However, you cannot make your requesting the 

script's URL; attackers do not need to go through your form or use the 
interface that you provide. 

• Maintain a good relationship with hardware and software vendors. Monitor 
vendor communications frequently for discoveries of new bugs or security 

1 0 patches to their software or hardware configurations. 

• If users do not have experience in writing secure programs, it is likely that 
locally written system. Do not allow users to place scripts or programs on 
your server unless a qualified application security professional has personally 
read through the scripts and programs and assured you of their safety. 

15 • The server's SUID. should never be specific as root. If it does, every script 

that our web server executes may be run as root. However, most servers are 
designed to be started by the root user, so that it can listen to requests on the 
standard http TCP/IP port. 

• Do not write SUID root shell scripts or programs on your web server. 
20 • Server log files record considerable information about each request. Be 

careful as to how large they grow and check that they automatically trimmed. 
If they are not monitored for size, log files can file computer's hard disk and 
result in loss of service. 

• You can learn a lot about the persons who are using the web server. From 
25 this information one can get a comprehensive picture of the people who are 

accessing the Web, the information that they are viewing, and where they 
have previously been. Use these logs to monitory the activity occurring on 
your system. 



30 Performance Management 



-587- 



Each group may have a role in performance management. The Fault management 
group collects statistics, and generates reports on Key Performance Indicators 
(KPFs). Therefore, this group may be best situated to determine if existing levels 
are reaching a point when upgrades need to be made or traffic rerouted. The 
5 configuration management group manages the user ID process, so they have a good 
idea on the number of users, which may usually have a direct effect on the amount of 
use. Therefore, this group may have KPFs on the number of users and may be able 
to allow for changes to this number. Finally, since the security management group 
approves new services, this group may know if and when a new service is going to 
10 be allowed that may effect performance in the gateway. 

Once it is known that a gateway needs to be upgraded, there are several possibilities. 

First, hardware upgrades are often the least-cost mechanism since rulesets, alarming, 

and other configurations can then effectively remain on one device and are 
1 5 unaffected by the change. If hardware upgrades are not possible (due to Operating 

System or application limitations), additional devices can be installed "in parallel". 

Protocol, Interface, and Addresses, or combinations of these factors can split traffic. 

For example, a site exceeding capacity can direct all WWW traffic through one 

Firewall if analysis proves that this traffic is a degrading factor. Further to this 
20 example, a locally installed WWW Cache server can alleviate traffic through devices 

such as Firewalls, delaying or preventing the need for an upgrade. 

In most cases, Firewall hardware and software capacity/capability may exceed the 
needs of most Distributed Firewall installations. The industry is also continually 

25 "raising the bar" of Firewall performance bottleneck points, and in many cases WAN 
links are more constraining than Firewall Input / Output performance ceilings. 
Coordination and open communications with network engineers and Firewall 
vendors may help ensure that Caching, Ruleset, and Load Distribution strategies are 
based on industry Best Practices, and are not counter-productive. For example, at 

30 some point over-installation of Caching servers' limits effectiveness since large 

numbers of users "benefit" from each other's recently cached portion of the present 
descriptions and traffic. 
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Conclusions 

Flexible Internetworking Gateways allow companies to securely connect their 
5 networks to the vast amounts of resources available today. They allow for rapidly 
changing business models and requirements by providing a modular approach to the 
security architecture. As seen in the above case studies, the Internetworking Gateway 
has the ability to scale from the smallest "simple" Internet connection, to a global 
web server with mission critical applications. These qualities may make the 
10 Internetworking Gateway Architecture a critical component of every company 
WAN. 



Glossary 



ACME 


A fictitious company used for example 
architectures 


BGP 


Border Gateway Protocol. A network routing 
protocol typically used to exchange routes 
between different networks 


Cybercash 


An Internet service for provided credit card 
authorizations 


DMZ 


"Demilitarized Zone" A network segment 
used to provide external users (Internet, 
Extranet) access to specific resources, like web 
pages and email 


DNS 


Domain Name System - Used for resolving 
easy to remember names into IP addresses 
(1.2.3.4) 


Firewall 


A server which controls access between 
different networks 


HTTP 


Hyper Text Transfer Protocol. The primary 
protocol for the World Wide Web 
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ICMP 


Internet Control Messaging Protocol 


ID 


User ID, or identification used to uniquely 
identify a user on a system 


IP 


Internet Protocol 


KPI 


Key Performance Indicator. A metric used to 
evaluate the operation of a system 


LAN 


Local Area Network 


LDAP 


Lightweight Directory Access Protocol 


NAB 


Lotus Notes Name and Address Book 


NDS 


Novell Directory Services 


NIC 


Network Interface Card 


OSPF 


A common network routing protocol 


POP3 


A oooular email rjrotocol 


RADIUS 


An authentication protocol 
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outlines high level security requirements for a 
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Security Philosophy 


A high level approach to security within a 

ui 1 1 \j cu i y 


SNMP 


Simple Network Management Protocol. 
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Ssh 


Secure shell. Provides encrypted session for 
remote management of servers 
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SSL 


Secure Sockets Laver — used for encrvnted 
transmission of data 


TACACS 


Terminal Access Control Access Controller 
System. An authentication protocol 


Telnet 


Simple, insecure remote access to servers. 


UNIX 


Operating system developed originally by 
AT&T that has been pervasive on the Internet 
to date 
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WAN 


Wide Area Network 


Windows NT 


Operating system developed by Microsoft for 
servers 



LOW OVERHEAD PERSISTENCE USING ADO 

5 This portion of the description provides specifics regarding the implementation of a 
low overhead Persistence model using ADO (ActiveX Data Object). This persistence 
framework is a similar in design to the Eagle Persistence model, but without 
implementing those features provided by Microsoft Transaction Server (Connection 
Pooling, Transaction Management). 

10 

The Persistence component is used to interact with databases to create, retrieve, 
update and delete a particular class of object. 

Description 

15 

Architecture 

In order to use ADO interacting with databases, the following two classes are 
provided under the Persistence package. 
Persistence.RetaExtent 
20 Persistence.RetaPersistableObj 

Persistence.RetaExtent 

This class replaces the Eagle current Persistence. JExtent class. It should cover all 
functionality in Persistence. JExtent class. The methods of this class may be 
25 referenced from business object factory classes to create, retrieve, update and delete 
a particular object using ADO. 



Main Methods: 
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public Vector select(String className, String criteria, String connString, int 
locking) throws VCEEventException 

This method selects and returns a vector of objects that meet the criteria supplied. 
5 @param className: the name of the business class 

@param criteria: this is an expression of the search criteria 
@param connString : connection string to the database. 

@param locking the level of object store locking desired - read-lock, update- lock, 
etc. 

10 ©return a vector of selected objects 

public void update(RetaPersistableObj inObject, String connString) throws 
VCEEventException 

15 This method updates an object in the database 
@param inObject: the object to be updated 
@param connString : connection string to the database. 

public void add(RetaPersistableObj inObject, String connString) throws 
20 VCEEventException 

This method adds an object in the database 
@param inObject: the object to be updated 
@param connString : connection string to the database. 

25 

public void delete(RetaPersistableObj inObject, String connString) throws 
VCEEventException 

This method deletes an object in the database 
30 @param inObject: the object to be updated 

@param connString : connection string to the database. 
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Sample Code: 

public Vector select(String className, String aValue, String connString, int 
locking) throws VCEEventException 
5 { 

Connection adoConn = null; 

try 

{ 

10 //Create business object 

Class businessClass = Class.forName(className); 
RetaPersistableObj theObj = (RetaPersistableObj) 
businessClass. newlnstance(); 

15 // create query statement 

String query = 

"SELECT " + 
theObj.columnListO + 
" FROM " + 

20 theObj.getTableName() + 

" where " + 
a Value; 

//open ADO connection 
25 adoConn = new Connection(); 

adoConn.open(connString); 

//Execute select query 
Recordset rs = new Recordset(); 
30 rs = adoConn. execute(query); 



// convert ADO record sets to business objects 



-593- 



Vector result = new Vector(); 

if(rs.getEOF()) 

{ 

rs.closeO; 

5 adoConn.close(); 

result. addElement(null); 

else 

{ 

10 while (!rs.getEOF()) 

{ 

// fill business object attributes using record set values 
RetaPersistableObj o = 
((RetaPersistableObj)businessClass.newInstance()).newFrom(rs); 

15 

// add object to result vector 
result.addElement(o); 

//move to the next record 
20 rs.moveNext(); 

} 

//close connection 
rs.close(); 

25 adoConn.close(); 

} 



30 



return result; 



} 



catch (AdoException e) 

{ 
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try 
{ 

adoConn.closeO; 

> 

5 catch (Exception ex) 

{ 

} 

throw VCECreateEvent.handlePersistException(e); 

} 

10 catch(Exception e) 

{ 

try 
{ 

adoConn.closeO; 

15 } 

catch (Exception ex) 

{ 

> 

throw VCECreateEvent.handleUnknownException(e); 

20 } 
} 

Persistence. RetaPersistableObj 

25 This class may replaces Eagle's Persistence.JVCEPersistableObj class. It should 
cover all functionality in Persistence.JVCEPersistableObj class. All persistable 
business objects should extend this class. 

Methods: 



30 
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This class should include all methods in Persistence.JVCEPersistableObj and it's 
super class Persistence.JObjectModeler. For those methods related to database result 
sets, ADO record set should replace Java result set. 

5 Application 

Business Object 

With reference to Figure 130, each persistable business object 13000 should extend 
10 to a RetaPersistableObj 13002. This abstract class defines a number of methods that 
need to be implemented in each business object. See the following sample code in 
RetaCustomer class. 

Sample Code: 

15 

public RetaPersistableObj newFrom(Recordset adoRs) throws AdoException 

{ 

try 

{ 

20 RetaCustomer theObj=new RetaCustomer(); 

super.newFrom(theObj ,adors); 
theObj.ssn = new 
Integer(adoRs.getField(ATTRIBUTE_SSN).getInt()); 

theObj.name = 
25 adoRs.getField(ATTRIBUTE_NAME).getString(); 

theObj.age = new Integer(rs adoRs 
getField(ATTRIBUTE_AGE).getInt()); 

theObj. level = 
adoRs.getField(ATTRIBUTE_LEVEL).getStringO; 
30 return theObj; 
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catch (AdoException e) 
{ 



return null; 



5 



} 



Factory Class 

10 Each Business Object should have a factory class. This class provides all method to 
create new COM instances of Business Object and fetch and persist these ones in the 
databases. To use ADO instead of JDBC to interact with databases, the factory class 
should reference the methods in the Persistence.RetaExtent. The database connection 
string (s_CONNECT_STRING ) should be added in the Session.VCELTConstants 

15 class. See the following sample code in RetaCustomerFactory class 

Sample Code: 

public static IUnknown getBySsn(Integer inSsn) throws VCEEventException 



20 



{ 



IRetaCustomer theRetaCustomer = null; 



try 
{ 



25 



RetaCustomer theObj = new RetaCustomer(); 

String[] theColumnLabels = theObj.getColumnNames(); 

String theldColumnLabel = 



theColumnLabels[theObj.ATTRTOUTE_SSN]; 



Vector theObjects = 
RetaExtent.select("BObjects.RetaCustomer" 5 



theldColumnLabel + + inSsn , 
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VCELTConstants.s_CONNECT_STRING, 1); 

TheObj = (RetaCustomer)theObjects.elementAt(O); 

5 if(theObj = null) 

{ 

return null; 

} 

10 // create a COM component and fill using values 

theRetaCustomer = 
(IRetaC ustomer)MTx . GetObj ect Context() . Createlnstance( 

CRetaCustomer.clsid,IRetaCustomer.iid); 
theRetaCustomer. set S sn(theObj . getS sn()) ; 
1 5 theRetaCustomer. setName(theObj .getName()); 

theRetaCustomer. set Age(theObj . get Age()) ; 
theRetaCustomer. setLevel(theObj . getLevelQ) ; 



20 



} 



catch (AdoException e) 

{ 

throw VCECreateEvent.handlePersistException(e); 

} 

25 catch(Exception e) 

{ 

throw VCECreateEvent.handleUnknownException(e); 

} 



30 return theRetaCustomer; 

} 
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MTS SHARED PROPERTY MANAGER 

This portion of the description provides specifics regarding the MTS Shared 
5 Property Manager ( SPM ). 

At its most basic level, the SPM can be thought of as a global storage container 
provided to objects registered in MTS. Using a series of methods, objects can create 
new properties and retrieve existing properties. 

10 

Description 
SPM Layers: 

15 Figure 131 illustrates layers of a shared property group manager. MTS provides 
several layers to the storage container. At the highest (root) level, is the 'Shared 
Property Group Manager' 13100. You must create an instance of the group manager 
to gain access to the underlying shared properties. The group manager does not 
provide any useful method except for 'CreatePropertyGroup 5 and 'getGroup'. These 

20 methods return a reference to the next layer - 'Shared Property Group' 13102. 

Shared Property Group(s) 

The 'Shared Property Group' container is used to logically group and store the 
underlying shared properties. It is this interface that exposes the 'CreateProperty' 
25 and 'getProperty' methods used to manipulate shared properties. For example, there 
could be a 'HardwareConfigGrp' shared property group that would group together 
one or more 'HardwareConfig' properties. 

Shared Property 

30 A 'Shared Property' 13104 is a variable that is available to all objects in the same 

server process. The value of the property can be any type that can be represented by 
a variant. Continuing the above example, the 'HardwareConfig' property could 
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contain a string describing the hardware, or contain an array that lists out all of the 
hardware attributes. 

Settings: 

5 

• LockMode 

• ReleaseMode 
10 SPM Notes: 

It's also important for components sharing properties to have the same activation 
attribute. If two components in the same package have different activation attributes, 
they generally won't be able to share properties. For example, if one component is 
configured to run in a client's process and the other is configured to run in a server 
1 5 process, their objects may usually run in different processes, even though they're in 
the same package. 

Only objects running in the same process can share shared properties. If one wants 
instances of different components to share properties, one has to install the 
20 components in the same MTS package. 

You should always instantiate the SharedPropertyGroupManager, 
SharedPropertyGroup, and SharedProperty objects from MTS objects rather than 
from a base client. If a base client creates shared property groups and properties, the 
25 shared properties are inside the base client's process, not in a server process. 

Java Packages: 

com.ms.mtx.IsharedPropertyGroupManager 
com.ms.mtx.ISharedPropertyGroup 
30 com.ms.mtx.ISharedProperty 
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This portion of the description provides specifics regarding the implementation of 
the Shared Memory Manager (SMM). 

Objects can gain access to the global memory area by using the SMM. The SMM 
5 itself does not implement or administer the memory area, but instead, leverages other 
interfaces that do. 

Description 

10 The SMM was designed to provide a simple interface into a global memory area. As 
stated above, this global memory area is not implemented by the SMM. Instead, the 
SMM relies on the 'Shared Property Group Manager' provided by MTS to 
implement the actual storage and maintenance of the global memory. 

15 The 'Shared Property Group Manager' was chosen as the storage medium primarily 
because of its availability and ease of use. As new technologies are release, the 
SMM could be modified to leverage them without any additional impact. In fact, no 
native memory management routines should be called for this very reason. 

20 Methods: 

The SMM provides two methods, 'getSharedMem' and 'setSharedMem' to interface 
with 'MTS Shared Property Manager' : 

25 public void setSharedMem( String strMemNameGrp, String strMemName, Variant 
varMemltem ) 

The 'setSharedMem' method is used to update or add an item to the shared memory 
area. The strMemNameGrp corresponds to an MTS 'Shared Group Name', the 
strMemName corresponds to an MTS 'Shared Property', and varMemltem 
30 corresponds to the 'Shared Property's value'. 

public Variant getSharedMem( String strMemNameGrp, String strMemName ) 
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The 'getSharedMem' method is used to retrieve a 'Shared Property' from the C MTS 
Shared Property Manager 5 . The strMemNameGrp corresponds to an MTS 'Shared 
Group Name', the strMemName corresponds to an MTS 'Shared Property', and 
return value corresponds to the 'Shared Property's value'. 

5 

ISSUES TRACKER SETUP 

Figure 132 depicts a method 13200 for initializing a database used with an issue 
10 tracker. The issue tracker receives information relating to a plurality of issues from a 
plurality of users, displays the information relating to the issues, and allows the 
browsing of the information relating to each of the issues. To initialize the database, 
the information relating to the issues is stored in a first database in operation 13202. 
A second database is provided in operation 13204. The second database stores 
15 tables including a plurality of user interfaces and/or application logic for accessing 
the information in the first database. The tables of the second database are 
reconfigured in operation 13206 upon migrating the first database from a first folder 
to a second folder. 

20 As an option, a copy of the tables may be stored after being reconfigured. As 

another option, changing of a title of the first database may also be allowed upon 
migration from the first folder to the second folder. Additionally, the information 
relating to the issues may also be allowed to be edited. 

25 The displayed information may also be filtered based on criterion. The criterion may 
be selected by the user or be a predetermined group of criterion for reporting 
purposes. The following material provides a more detailed description of the above- 
described method. 

30 This portion of the present description provides a description of the installation and 
configuration of the Issues Tracker Database for use on a ReTA engagement. The 
Issues Tracker is be used to report development, testing, architecture, and 
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infrastmcture problem and provide a means for team leaders and project managers to 
manage the issue resolution process. 

Tool Installation 

The Issue Tracker tool is comprised of two Microsoft Access databases. ReTA 
Issues DB - Client.mdb, which provides the user interfaces and supporting 
application logic and ReTA Issues DB.mdb, which contains the actual Issue 
Tracking data. To access the issue data the client database contains linked Access 
tables that actually reside in the second database. In order to function correctly these 
tables must be reconfigured so that the location references are correct. This step 
needs to be done every time the databases are moved to a difference file system 
folder. 

To configure the tool for normal operation the following steps must be completed. 

• Both files must reside within the same file system folder. 

• Referring to Figure 132.1, open the ReTA Issues DB - Client.mdb file 
13230 by clicking on the Open button 13232 while holding down the <Shift> 
key. This may prevent the tool from actually launching. This should result 
in Microsoft Access starting with the database file open. 

• Remove the linked tables within the database (indicated by an arrow 13300 
pointing to the right). This is done by selecting a table and striking the 
<Delete> key. As shown in Figure 133, when prompted to confirm the 

25 deletion select the 6 Yes' button 13302 to continue. This should be done for 

all of the linked tables within the client database. 

• Select the 'New' button 13304 to insert a new table. This may result in the 
'New Table 5 dialog window 13400 being displayed as shown in Figure 134. 

30 Select the Link Table option 13402 and select the OK button 13404. 
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10 



With reference to Figure 135, locate the database file 13500, select it and 
press the Link button 13502 to continue. 

When prompted by Access for which tables to link select the Select All 
button 13600. See Figure 136. Click the OK button 13602 to continue. 

When completed the database file should again have linked tables with the 
correct path stored internally. Close the client database and create a backup 
copy before using. 



Using the Tool 



To launch the Issue Tracker, open the ReTA Issues DB - Client.mdb Access 
database file by either double clicking on the file within the Windows Explorer. 
15 Alternatively, create a Windows Shortcut to the client database and distribute the 
shortcut to all project team members. 

Customizing the Tool 

20 To customize the tools windows and report pages follow the following steps. 

• Form and Report Labels 

• Open the ReTA Issues DB - CIient.mdb file by clicking on the Open button 
while holding down the <Shift> key. This may prevent the tool from actually 

25 launching. This should result in Microsoft Access starting with the database 

file open as illustrated in Figure 137. 

• Select the 'Welcome Form' 13700 and select the Design button. 



30 



Double click on the FormLabel label 13800 at the top of the form 13802. 
See Figure 138. At that point it is possible to modify the label with the 
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appropriate project name. Upon completion, close the window and save any 
changes. 

• Select the 'Issue Form' 13702 of Figure 137 and select the Design button. 

5 

• Modify the FormLabel label 13800 of Figure 138. Close and save any 
changes. 

• To modify the available reports within the Issue tool select the desired report 
10 13900 as best illustrated in Figure 139. Click the Design button 13902 to 

edit the report. 

• As shown in Figure 140, modify the desired report elements 14000,14002 to 
the new project name. Close and save any changes. 



15 



20 



• Project Location, Team Members and Project Phases 

With reference to Figure 141, double click on the 'Team Codes' table 14100. Add 
and delete project locations as desired. Close and save the changes. 

With reference to Figure 142, double click on the 'Team Membership Table' 14200. 
Make changes and save as necessary. 



With reference to Figure 143, double click on the 'Project Phases' table 14300. 
25 Make changes and save as necessary. 

Database Title 



To change the title of the database to that of the current project open the client 
30 database while holding the <shift> key. With the client database open, select the 
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Tools | Startup menu item. In the Startup dialog box 14400 as illustrated in Figure 
144, make any changes and select the OK button 14402 to save the changes. 

DESIGNING BUSINESS COMPONENTS 

5 

Figure 145 illustrates a method 14500 for generating software based on business 
components. A plurality of business components in a business are defined in 
operation 14502 with each business component having a plurality of capabilities. In 
operation 14504, functional interrelationships are identified between the business 

10 components. Code modules are generated in operation 14506 to carry out the 
capabilities of the business components and the functional interrelationships 
between the business components, while ensuring the capabilities that are carried out 
by each code module are essentially unique to the business component associated 
with the code module. In operations 14508 and 14510, the functional aspects of the 

15 code modules and the functional relationships of the code modules are tested. The 
code modules are subsequently deployed in an e-commerce environment in 
operation 14512. 

The business components may include customers, products, orders, inventory, 
20 pricing, credit check, billing, and fraud analysis. Further, a portion of the business 
components may be entity-centric. Alternatively, a portion of the business 
components may be process-centric. In such an embodiment, a portion of the 
business components that are entity-centric may be governed by the business 
components that are process-centric. As an option, the business components that are 
25 process-centric may also be user-controlled. The following material provides a more 
detailed description of the above-described method. 

Over the past five years, component-based development has become an important, 
but often-misunderstood concept in the IT world. Components in themselves don't 
30 guarantee successful business applications, but coupled with a proven methodology 
and continuous technological advancements, they make it possible to realize a 
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number of important benefits such as flexibility, adaptability, maintainability, 
reusability, integration readiness, interoperability, and scalability. 

Components have been around for a long time. The wheels on an ancient Roman 
5 chariot were certainly components. When the local chariot maker invented a new 
wheel (one that promised greater speeds and improved reliability on a wider variety 
of terrain), chariot owners would replace their worn-out, inefficient, and out-dated 
wheels with the new ones, but only if the new ones offered, at a minimum, the same 
function (i.e., rolling) through the same interface (i.e., the connection between the 
10 wheel and the chariot). 

Today components are used to build everything from cars to computers. In 
electronics, for example, they have led to the proliferation of product features, 
disposability, miniaturization, product selection, price reduction, and standard 
15 interfaces — all good for the consumer. This example also draws attention to some of 
the challenges that accompany components: setting standards, determining the right 
components, the need to change standard interfaces based on new requirements, and 
the legal and commercial structure for selling components. 

20 Throughout the industry the word "component" is used broadly and often loosely. 
Components come in a wide variety of shapes and sizes. For example: JavaBeans, 
ActiveX controls, and COM objects. And more generically: application, 
architecture, development, engineering, Web, server, and business components. 

25 Many industry experts have attempted to define "component." Unfortunately, many 
of these definitions are too abstract, too academic, or too specialized to be useful. 
Yet below the surface of these definitions is some real business value for 
organizations. 

30 Experience has shown that it's quite common for people to view components from 
different perspectives. Some of them — typically designers — take a logical 
perspective. They view components as a means for modeling real-world concepts in 
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the business domain. These are Business Components. Others — typically 
developers — take a physical perspective. They view components as independent 
pieces of software, or application building blocks, that implement those real-world 
business concepts. These are Partitioned Business Components. Developers also 
5 emphasize that Partitioned Business Components can be built from other 

independent pieces of software that provide functionality that is generally useful 
across a wide range of applications. These are Engineering Components. 

To use an analogy, the designer of a PC workstation would initially think in terms of 
1 0 logical components such as Disk Storage, Memory, Display, etc. These are 

analogous to Business Components. At some point in the design process, however, 
this thinking must become more precise. For example, Disk Storage might become 
a Hard Disk Drive and Disk Controller Card. These are analogous to Partitioned 
Business Components. And finally, the designer might use generic parts in the 
15 design of the Disk Controller Card, such as Memory Chips for cache, Bus Adapters, 
etc. These are analogous to Engineering Components. 

Establishing one definition to satisfy all of these perspectives is certainly not 
required to be successful with components. What's more important is to recognize 
20 the different perspectives and to understand when it's appropriate to talk about a 
particular type of component. Hence, multiple definitions, one for each type of 
component: 

Business Components represent real-world concepts in the business domain. They 
25 encapsulate everything about those concepts including name, purpose, knowledge, 
behavior, and all other intelligence. Examples include: Customer, Product, Order, 
Inventory, Pricing, Credit Check, Billing, and Fraud Analysis. One might think of a 
Business Component as a depiction or portrait of a particular business concept, and 
as a whole, the Business Component Model is a depiction or portrait of the entire 
30 business. It's also important to note that although this begins the process of defining 
the application architecture for a set of desired business capabilities, the applicability 
of the Business Component Model extends beyond application building. 
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Whereas Business Components model real-world concepts in the business domain, 
Partitioned Business Components implement those concepts in a particular 
environment. They are the physical building blocks used in the assembly of 
5 applications. As independent pieces of software, they encapsulate business data and 
operations, and they fulfill distinct business services through well-defined interfaces. 
Business Components are transformed into Partitioned Business Components based 
on the realities of the technical environment: distribution requirements, legacy 
integration, performance constraints, existing components, and more. For example, 
10 a project team might design an Order Business Component to represent customer 
demand for one or more products, but when it's time to implement this concept in a 
particular client/server environment, it may be necessary to partition the Order 
Business Component into the Order Entry component on the client and the Order 
Management component on the server. These are Partitioned Business Components. 

15 

Engineering Components are independent pieces of software that provide 
functionality that is generally useful across a range of applications. They come in all 
shapes and sizes, and they are typically packaged as black box capabilities with well- 
defined interfaces. They are the physical building blocks used in the assembly of 
20 Partitioned Business Components. Examples include: a workflow engine, a 
JavaBean that encapsulates a reusable concept like address or monetary unit, a 
complex widget that allows users to edit a list of order lines, a group of objects 
responsible for persistence, a JavaBean that sorts a collection of objects, and a 
simple list box coded as an ActiveX control. 

25 

Components are useful throughout the development process. As a design artifact, 
early in the process, Business Components provide an underlying logical framework 
for ensuring flexibility, adaptability, maintainability, and reusability. They serve to 
break down large, complex problems into smaller, coherent elements. They also 
30 model the business in terms of the real-world concepts that make up the domain 

(e.g., entities, business processes, roles, etc.). Thus they provide the application with 
conceptual integrity. That is, the logical Business Components serve as the direct 
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link between the real-world business domain and the physical application. An 
important goal is to build an application that is closely aligned with the business 
domain. Later in the process, Partitioned Business Components and Engineering 
Components provide a means for implementing, packaging, and deploying the 
5 application. They also open the door to improved integration, interoperability, and 
scalability. 

Figure 145.1 shows a relationship between business components 14530 and 
partitioned business components 14532. Business Components are an integral part 
10 of the previously discussed Framework Designs. Business Components represent 
real-world concepts in the business domain. They encapsulate everything about 
those concepts including name, purpose, knowledge, behavior, and all other 
intelligence. 

15 In the Business Architecture stage 14534, a project team begins to define the 

application architecture for an organization's business capabilities using Business 
Components. Business Components model real-world concepts in the business 
domain (e.g., customers, products, orders, inventory, pricing, credit check, billing, 
and fraud analysis). This is not the same as data modeling because Business 

20 Components encapsulate both information and behavior. At this point in the 

process, an inventory of Business Components is sufficient, along with a definition, 
list of entities, and list of responsibilities for each Business Component. 

In Capability Analysis 14536 and the first part of Capability Release Design 14538, 
25 the project team designs Business Components in more detail, making sure they 
satisfy the application requirements. The team builds upon its previous work by 
providing a formal definition for each Business Component, including the services 
being offered. Another name for these services is "Business Component Interfaces." 
The team also models the interactions between Business Components. 

30 

Throughout the remainder of Capability Release Design and into Capability Release 
Build and Test 14540, Business Components are transformed into Partitioned 
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Business Components based on the realities of the technical environment. These 
constraints include distribution requirements, legacy integration, performance 
constraints, existing components, and more. Furthermore, to ensure the conceptual 
integrity of the Business Component model, a given Partitioned Business 
5 Component should descend from one and only one Business Component. In other 
words, it should never break the encapsulation already defined at the Business 
Component level. Also at this time, the project team designs the internal workings 
of each Partitioned Business Component. This could mean the Engineering 
Components that make up the Partitioned Business Component, the "wrapper" for a 
1 0 legacy or packaged system, and other code. 

In Capability Release Build and Test, Partitioned Business Components are built and 
tested. The build process varies depending upon the technology chosen to build the 
internal workings of each Partitioned Business Component. Among the many tests 

1 5 that are performed during this stage, the component, assembly, and performance 
tests are impacted the most by this style of development. A component test 
addresses a Partitioned Business Component as a single unit by testing its interfaces 
and its internal workings, while an assembly test addresses the interactions between 
Partitioned Business Components by testing broader scenarios. The performance 

20 test is impacted primarily by the techniques one would use to resolve the various 
performance issues. For example, it's common to run multiple copies of a 
Partitioned Business Component across multiple servers to handle a greater 
transaction volume. 

25 In Deployment 14542, the Partitioned Business Components are packaged and 

deployed as part of the application into the production environment. The application 
parameters and the manner in which the Partitioned Business Components are 
distributed are tweaked based on how well the application performs. 



30 



Well designed Business Components are anthropomorphic. That is, they take on 
characteristics and abilities as if they were alive. This means that Business 
Components should reflect directly the characteristics and abilities (i.e., the 
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information and behavior) of the business concepts they represent. Therefore, only 
by examining the various types of business concepts will one discover an acceptable 
way to classify Business Components. 

5 Business concepts come in a wide variety. For example, a product represents 

something of value that is up for sale, while a credit check represents the work that 
needs to be done to determine if a customer's credit is good. The former is centered 
around an entity — the product — while the latter is centered around a process — credit 
check. 

10 

This line of thinking leads to two types of Business Components: entity-centric and 
process-centric. Unfortunately, what commonly results from this paradigm is an 
argument over whether or not a particular Business Component is entity-centric or 
process-centric. In reality, Business Components are always a blend of both 
1 5 information and behavior, although one or the other tends to carry more influence. 
An appropriate mental model is a spectrum of Business Components. 

Business Components on the entity-centric side of the spectrum tend to represent 
significant entities in the business domain. Not only do they encapsulate 

20 information, but also the behaviors and rules that are associated with those entities. 
Examples include: Customer, Product, Order, and Inventory. A Customer Business 
Component would encapsulate everything an organization needs to know about its 
customers, including customer information (e.g., name, address, and telephone 
number), how to add new customers, a customer's buying habits (although this 

25 might belong in a Customer Account component), and rules for determining if a 
customer is preferred. 

Business Components on the process-centric side of the spectrum tend to represent 
significant business processes or some other kind of work that needs to be done. Not 
30 only do they encapsulate behaviors and rules, but also the information that is 

associated with those processes. Examples include: Pricing, Credit Check, Billing, 
and Fraud Analysis. A Pricing Business Component would encapsulate everything 
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an organization needs to know about how to calculate the price of a product, 
including the product's base price (although this might belong in a Product 
component), discounts and rules for when they apply, and the calculation itself. 

5 One might argue that the Pricing component is more entity-centric than process- 
centric. After all, it's centered around the concept of price, which is an entity. In 
reality, though, it depends on the business requirements, but again, whether or not a 
given Business Component is entity-centric or process-centric is not important yet. 
What is important is how well the Business Component represents its corresponding 
10 real-world business concept. The fact that most business concepts are a blend of 
information and behavior means that most Business Components should also be a 
blend of information and behavior. Otherwise applications would be much like they 
are today with a distinct separation of data and process. 

15 Another way to think about the process-centric side of the spectrum is by asking, 
"What role performs the process?" For example, it's the picker-packer who picks 
inventory and packs it into a shipment. This might lead to the Picker-packer 
component. Another example is a Shopping Agent component that knows 
someone's buying preferences, shops for the best deals, and either reports back to the 

20 user or makes the purchase. 

A pattern emerges when one examines the way these Business Components interact 
with each other. Process-centric Business Components are "in control," while 
entity-centric Business Components do what they're told. To be more explicit, a 
25 process-centric Business Component controls the flow of a business process by 

requesting services in a specific sequence according to specific business rules (i.e., 
conditional statements). The services being requested are generally offered by 
entity-centric Business Components, but not always. Sometimes process-centric 
Business Components trigger other process-centric Business Components. 

30 

Figure 146 shows how a Billing Business Component 14600 may create an invoice. 
The control logic 14602 (i.e., the sequence of steps and business rules) associated 
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with the billing process is encapsulated within the Billing component itself. The 
Billing component requests services from several entity-centric Business 
Components, but it also triggers Fraud Analysis 14604, a process-centric Business 
Component, if a specific business rule is satisfied. Note also that "Step 6" is 
5 performed within the Billing component itself. Perhaps this is where the invoice is 
created, reflecting the design team's decision to encapsulate the invoice within the 
Billing component. This is one valid approach. Another is to model a separate 
entity-centric Invoice component that encapsulates the concept of invoice. This 
would effectively decouple the invoice from the billing process which might be a 
10 good thing depending on the requirements. 

D 

It would be logical to conclude that the two types of Business Components translate 
£ to two types of Partitioned Business Components, but a small adjustment is required. 

t: Entity-centric Business Components translate directly to Business Entity 

M= 15 Components, but a closer look at the ways in which a business process can be 
g implemented in an application reveals two possibilities for process-centric Business 

~~i Components. A business process can be: 1) automated, like a billing process, or 2) 

□ controlled by a user, like an order entry process. The former results in a Business 

Ik Process Component, while the latter results in a User Interface Component. 

20 

Figure 147 illustrates the relationship between the spectrum of Business 
Components 14700 and the types of Partitioned Business Components 14702. 
Business Entity Components 14704 and Business Process Components 14706 are 
straightforward. The former is the physical implementation of an entity-centric 
25 Business Component (e.g., Customer), while the latter is the physical 

implementation of an automated process-centric Business Component (e.g., Billing), 
User Interface Components 14708, on the other hand, require further explanation. 



As mentioned above, a User Interface Component is the implementation of a 
30 business process that is user controlled, but more explicitly it is a set of functionally 
related windows that supports the process(es) performed by one type of user. 
Examples include: Customer Service Desktop, Shipping Desktop, and Claim 
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Desktop. These are not to be confused with low-level user interface controls (e.g., 
Active X controls), rather User Interface Components are usually built from low- 
level user interface controls. The reason for the dashed arrow in the diagram above 
is a subtle one. It points to the fact that earlier in the development process User 
5 Interface Components are generally not modeled as process-centric Business 
Components. Instead, they typically originate from the workflow, dialog flow, 
and/or user interface designs. See Figure 148, which illustrates the flow of 
workflow, dialog flow, and/or user interface designs 14800,14802,14804 to a User 
Interface Component 14806. This makes complete sense given their direct tie to 
10 user controlled business processes. 

Figure 149 is a diagram of the Eagle Application Model which illustrates how the 
different types of Partitioned Business Components might interact with each other. 
Business Entity Components 14900 and Business Process Components 14902 
15 typically reside on a server, while User Interface Components 14904 typically reside 
on a client. 

Figure 150 illustrates what makes up a Partitioned Business Component 15000. As 
long as a component does what it's suppose to do, it doesn't matter what kind of 

20 code is used to build the component's internal workings. It could be anything from 
COBOL to Java. This is a key benefit of encapsulation. Classifying this code is a 
different matter. Some code 15002 is specific to the Partitioned Business 
Component. Other code is more widely reusable, both functionally and technically; 
this is where we find Engineering Components 15004. Another possibility is to 

25 "wrap" existing code 15006 from legacy and packaged systems. Finally, it's 

important to note that patterns and frameworks are frequently used as starting points 
for designing and building this code. 

Engineering Components are physical building blocks used in the assembly of 
30 Partitioned Business Components. They are independent pieces of software that 

provide functionality that is generally useful across a range of applications, and they 
are usually packaged as black box capabilities with well-defined interfaces. 
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Engineering Components can be bought or built, and they come in a wide variety. 
Examples include: a workflow engine, a JavaBean that encapsulates a reusable 
concept like address or monetary value, a complex user interface control that allows 
users to edit a list of order lines, a group of objects responsible for persistence, a 
5 JavaBean that sorts a collection of objects, and a list box coded as an ActiveX 
control. 

A pattern is "an idea that has been useful in one practical context and will probably 
be useful in others." Think of them as blueprints, or designs for proven solutions to 

10 known problems. Having found the right pattern for a given problem, a developer 
must then apply it. Examples of patterns include: an analysis pattern for 
hierarchical relationships between organizations and/or people, a design pattern for 
maintaining an audit trail, a design pattern for applying different levels of security to 
different user types, and a design pattern for composite relationships between 

15 objects. 

A framework is a template for the implementation of a particular function (similar to 
a shell program). It usually embodies a known pattern (or group of patterns) in a 
specific technical environment. Frameworks are available from a number of third- 

20 party vendors, and they are also developed on projects. Developers are typically 
expected to customize and extend frameworks to meet their specific requirements, 
but this involves a tradeoff. Customizing and extending a framework may optimize 
its use, but the resulting framework tends to be less abstract, and therefore less 
reusable in other contexts. Examples of frameworks include: a framework for 

25 displaying an object and its properties in Smalltalk, a Java-specific framework for 
persisting data, and a messaging and publish/subscribe framework for DCOM. 

Figure 151 illustrates the role of patterns and frameworks. More specifically, it 
introduces the Eagle Architecture Specification 15100 and the Component Solutions 
30 Handbook 15102, both of which are groups of patterns. Eagle also offers 
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technology-specific starter kits 15104, which include frameworks for various 
environments. 



The pace of change in today's business world is increasing faster than ever before. 
Meanwhile, advances in information technology have enabled businesses to better 
understand their customers, provide greater value, and create new markets. 
However, as technology becomes more complex, applications have become more 
difficult and time-consuming to build and maintain. Looking forward, applications 
must be dramatically more responsive to change. They must be more: 



Flexible 



Adaptable 



Maintainable 



Reusable 



Integration 
Ready 



Interoperable 



Scalable 



In theory... 

Making it possible to quickly 
satisfy new business requirements 
by replacing or modifying certain 
components with minimal impact 
to others. 

Making it easy to deliver an 
application to a variety of user 
types through a variety of delivery 
channels with minimal impact to 
the core application. 
Making it easy to update an 
application by reducing the area of 
impact for most changes. 

Making it possible to quickly 
assemble unique and dynamic 
solutions from existing 
components. 

Making it possible to reuse the 
functionality within existing 
systems by wrapping them as 
components within new 
applications. 

Making it possible to request 
services across platforms. 

Making is easy to distribute and 
reconfigure components to satisfy 
various transaction volumes. 



In practice... 

Making it possible to accommodate a 
new product line solely by updating 
the Product component. 



Making it easy to provide in-home 
access to customer account 
information by developing only a 
new user interface while reusing 
existing components. 
Making it easy to add a new 
customer attribute by isolating the 
change to one component — the 
Customer component. 
Making it possible to assemble an 
application at a fraction of the cost 
because eight of the twelve 
components that are needed already 
exist. 

Making it possible to absorb newly 
acquired divisions by "wrapping" 
their systems and "plugging" them 
into the enterprise infrastructure. 

Making it possible to integrate two 
applications built on different 
platforms. 

Making it easy to accommodate the 
holiday crunch by running multiple 
copies of the Order component 
across multiple servers. 
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Components will help an IT organization achieve these quality attributes. Through 
encapsulation they make it possible to develop applications that are more responsive 
to change. We can make this claim with confidence because a component that is 
5 well encapsulated (i.e., an independent, black box component with predictable, well 
defined interfaces) can be used in any situation, as long as it's used for its intended 
purpose. It knows how to perform its services without regard to what's happening 
outside of its boundaries (e.g., the actions that precede or follow it). 

10 Another key to embracing change is the predictability and conceptual integrity of the 
parts that make up an application. Fred Brooks, author of The Mythical Man-Month, 
writes, ..conceptual integrity is the most important consideration in system 
design." Therefore, components must be conceptually whole, and they must perform 
functions that are aligned with their purpose and within their sphere of knowledge. 

15 If they accurately reflect the real world, they are much easier to develop and 
maintain. If the real world changes, so must the corresponding component. 

Given a design with these characteristics, the opportunity for reuse is significantly 
enhanced, and the time it takes to upgrade the system is dramatically reduced. The 
20 Gartner Group agrees that component-based development will be a dominant 

method of application development in the years to come. They say that "by 2001, at 
least 60 percent of all new applications development will be based on assemblies of 
componentware, increasing speed to market and the ability to cope with change (0.7 
probability)." 

25 

Business Components and Partitioned Business Components represent a major 
improvement in design capability — some might argue the first major change in 
design thinking since structured design. There are several reasons for this 
breakthrough: 

30 

Business Components model entities and processes at the enterprise level, and they 
evolve into Partitioned Business Components that are integrated into applications 
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that operate over a network. Consequently, they serve as an excellent first step in the 
development of scalable, distributed enterprise applications that map closely to the 
business enterprise itself (i.e., the way it operates and the information that defines it). 

5 Business Components model the business, and thus they enable applications to more 
completely satisfy the business needs. They also provide a business-oriented view of 
the domain and consequently a good way to scope the solution space. This results in 
a good context for making process and application decisions. Finally, Business 
Components provide a common vocabulary for the project team. They educate the 
10 team in what's important to the business. 

When modeled correctly, entity-centric Business Components represent the most 
stable elements of the business, while process-centric Business Components 
represent the most volatile. Encapsulating and separating these elements contributes 
15 to the application's overall maintainability. 

To manage the complexity of a large problem, it must be divided into smaller, 
coherent parts. Partitioned Business Components provide an excellent way to divide 
and conquer in a way that ties the application to the business domain. They provide 
20 the ability to "package software capabilities into more manageable (and useful) 
chunks." By contrast, traditional modules are too cumbersome to be reusable in 
multiple contexts. On the other end of the spectrum, objects are too small to 
effectively divide and conquer; there are simply too many of them. 

25 Partitioned Business Components provide a greater emphasis on application 

layering — a well known, but often neglected concept in application development. 



30 



Partitioned Business Components are application building blocks. As an application 
modeling tool, they depict how various elements of an application fit together. As 
an application building tool, they provide a means for systems delivery. 
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Proven processes, patterns, and frameworks offer a higher level of reuse. This is one 
of the key advantages because it means greater agility. These mechanisms make it 
possible for hundreds of developers to do things consistently and to benefit from 
previously captured, reusable knowledge capital. 

5 

Business Components model the business. It sounds straightforward, but even with 
experience it's a challenge to identify the right components and to design them for 
flexibility and reuse. Flexibility and reuse are certainly more achievable with 
Business Components, but they are not inherent to Business Components. To 

10 accomplish these goals, as the previous examples suggest, one must understand 

what's happening within the enterprise and across the industry. One must work with 
business experts who understand the factors that will influence the current and future 
evolution of the business domain. This will improve one's ability to anticipate the 
range of possible change (i.e., to anticipate the future). The Business Component 

15 Model will be more flexible and reusable if it is challenged by scenarios that are 
likely to take place in the future. 

Reuse becomes a reality more quickly if one plans for it. And it endures if one 
manages it over time. However, both of these things are difficult to do, especially 

20 for large projects and large enterprises. First of all, it's easy for communication 

across one or more projects to break down. It's also common for individual projects 
to pay more attention to their requirements and deadlines than to project-wide or 
enterprise-wide reuse. After all, their most important objective is to deliver value to 
their customers. Reuse must be engrained into the culture. This could mean teams 

25 responsible for project-wide and enterprise-wide reuse, but no matter how it's done, 
reuse must be one of the most important technology objectives. 

Too much focus on low-level (i.e., code) reuse can be a trap. To draw an analogy, 
take a look at the auto industry ten years ago. Some auto makers were focused on 
30 inter-changeable parts and low-level standardization. For example, they decided to 
use the same body style for all of their cars. Unfortunately, when the industry began 
to move away from the boxy body style, they were not well prepared, nor were they 
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agile enough to react in a timely fashion. They had invested too much in low-level 
standardization. Conversely, other auto makers were focused on quality processes 
and frameworks (i.e., high-level reuse). As a result, they were able to respond more 
quickly to the changing requirements. Engagement experience has shown that the 
5 same thing can happen with components and objects (e.g., too much emphasis on 
low-level inheritance). That's why it's important to focus appropriately on the high- 
level reuse enabled by processes, patterns, and frameworks. 

Although Business Components and Partitioned Business Components represent a 
10 significant breakthrough in design capability, the architectural frameworks to 

support this breakthrough are still maturing. Standards come to mind first: Will it 
be COM, JavaBeans, or CORBA? It's still not clear. Likewise with languages: 
Will it be Visual Basic, Java? Tools and repositories offer another challenge. Clear 
winners have yet to emerge, and newcomers are constantly popping up with 
15 promising products. Finally, the legal and commercial market for buying and selling 
components is not mature. The market for high-level common business objects is 
just emerging, while the market for low-level components is still chaotic. 

One of the most important challenges is teaching a new application development 
20 style. Although components and objects have been around for a while, they are new 
to most people. Furthermore, component-based development requires a change in 
the way one thinks about designing and building applications. Engagement 
experience has shown that it takes a couple of months to feel comfortable with this 
paradigm — and longer for those pursuing deeper technical skills. But this challenge 
25 is certainly not impossible to overcome. A combination of training and mentoring 
has proven to be the best way to teach these concepts, and the more rigorous 
approach that results from this education is well worth the journey. 

The following tips and techniques provide an introduction to some of the issues 
30 surrounding the design of Business Components. For more information, see the 
ODM. 
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What is the right number of Business Components? How big should they be? 

The granularity of Business Components is a frequent topic of discussion. A fairly 
common misconception is that Business Components are the same as applications, 
5 but in fact, applications are assembled from Business Components (or Partitioned 
Business Components to be more accurate). A typical application might have ten to 
twenty Business Components. On the other end of the spectrum, Business 
Components are larger than business objects. In fact, some people refer to Business 
Components as large-grained business objects. 

10 

So what is the right size for a Business Component? 

Business Components should encapsulate concepts that are significant to the 
business domain. Of course, this is subjective, and it certainly varies by business 
1 5 domain. In fact, business domain experts, with help from component modelers, are 
in the best position to make this judgment. 

Bigger Business Components hide more complexity, which in general is a good 
thing. However, too much complexity in a component can lead to many of the 

20 problems that preceded component-based development. For example, embedding 

too much policy information can lead to a Business Component that is more difficult 
to maintain and customize. Another advantage is the fact that the coupling between 
bigger components tends to be weaker. On the other hand, bigger components are 
generally less cohesive and consequently less flexible. For example, assume that the 

25 concepts of warehouse and inventory have been combined into one Business 

Component. This could be problematic if a future application needs warehouse 
information, but not inventory information. 

Smaller Business Component tends to be more flexible. It's also easier to reuse 
30 them in future applications. Unfortunately, smaller components typically result in a 
higher degree of coupling. One will find significantly more interactions between 
smaller components. This could also lead to performance problems. If two or three 
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small components send each other a lot of messages, it might make sense to combine 
them into one. Smaller components may also be more difficult to manage, simply 
because more of them exist. 

5 It's important to strike a balance, and keep in mind that the ideal size depends on the 
domain. If there's a question in one's mind, it makes sense to lean toward smaller 
components. It's easier to combine them than to break them up. 

What 's the best way to identify Business Components? 

10 

During the Business Architecture stage, the project team defines its business 
capabilities. At this point in the process, one can begin to search the business 
domain for Business Components. Then again later, during Capability Release 
Design, when the project team documents scenarios and workflows, one can perform 
15 a second iteration through the identification process. 

The following steps describe one technique for identifying Business Components. 
Figure 152 illustrates this Business Component Identifying Methodology 15200 
including both Planning and Delivering stages 15202,15204: 

20 

1 . Start with entity-centric Business Components. For example, the customer is 
a significant entity in most business domains, therefore a Customer 
component is quite common. A Customer Business Component would 
encapsulate everything an organization needs to know about its customers, 

25 including customer information (e.g., name, address, and telephone number), 

how to add new customers, a customer's buying habits (although this might 
belong in a Customer Account component), and rules for determining if a 
customer is preferred. Entities themselves can be physical or conceptual. 
For example, customers and products are physical — you can touch them. 

30 Orders, on the other hand, are conceptual. An order represents a specific 

customer's demand for a product. You cannot touch that demand. 
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2. Look for process-centric Business Components next. Generally speaking, a 
process-centric Business Component controls the flow of a business process. 
For example, in the utility industry, a Billing component would process 
customer, product, pricing, and usage information into a bill. Sometimes one 
5 will find an entity associated with the process — in this case, a bill or 

invoice — but another option is to model this entity as a separate, entity- 
centric Business Component, thus decoupling it from the process. 

What 's the best way to identify the responsibilities of a business component? 

10 

Review the business capabilities, business processes, business practices, scenarios, 
workflows, and other requirements. Look for behaviors that will be supported by the 
application. In other words, what are the business functions that will be performed 
by the system? Assign them as responsibilities to the most appropriate component. 
15 If components were people and computers didn't exist, one might ask, "Who is 
responsible for this task?" In fact, sometimes it's helpful to assign component 
owners who speak up when they encounter a responsibility that should belong to 
their components — "Hey, I should be responsible for that!" 

20 This section addresses several frequently asked questions that more broadly apply to 
the physical implementation of component- and object-based solutions. The answers 
are intended to increase the awareness of the reader. Most of them only scratch the 
surface of issues that are somewhat controversial within the component and object 
community. 

25 

What is the role of components in net-centric computing? 

Physical components play a critical role in net-centric computing because they can 
be distributed, as encapsulated units of executable software, throughout a 
30 heterogeneous environment such as the Internet. They have the ability to make the 
Web more than a toy for retrieving and downloading information. Robert Orfali, 
Dan Harkey, and Jeri Edwards, well-known experts in the field of component- and 
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object-based development, wrote the following about distributed objects (same as 
"distributed components" for the purpose of this discussion): 

The next-generation Web — in its Internet, intranet, and extranet incarnations — must 
5 be able to deal with the complex requirements of multi-step business-to-business and 
consumer-to-business transactions. To do this, the Web must evolve into a full- 
blown client/server medium that can run your line-of-business applications (i.e., a 
delivery vehicle for business transaction processing). . . To move to the next step, 
the Web needs distributed objects. 

10 

What's the difference between components and objects? 

From a logical perspective, components and objects are the same. They both model 
concepts from a particular domain, and they both encapsulate information and 

15 behavior. On this level, good component models and good object models share the 
same characteristics: high cohesion, low coupling, reusability, well defined services, 
and more. One might argue that granularity is a key difference. After all, for an 
object-oriented design, components are made up of objects. This may be true, but in 
reality both of them come in all sizes, thus making this difference rather 

20 insignificant. 

From a physical perspective, components and objects are similar, but different. The 
key difference relates to the different ways in which they are implemented. As long 
as a component's interfaces comply with an accepted standard like COM, 

25 JavaBeans, or CORBA, its internal workings can be implemented using any 

technology (e.g., Java, Visual Basic, Smalltalk, C, or even COBOL). The internal 
workings of an object, on the other hand, can only be implemented using object 
technology. For the same reason (i.e., standard interfaces), it is possible to request a 
component's services from any platform. That's not true of objects, unless they are 

30 wrapped with interfaces that comply with the accepted standards, which would make 
them distributed objects (i.e., components) instead. 
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Robert Orfali, Dan Harkey, and Jeri Edwards also wrote the book The Essential 
Distributed Objects Survival Guide (1996). Chapter 2, "From Distributed Objects to 
Smart Component," is an excellent source of information about objects, components, 
and the differences between them. They say the following about physical 
5 components: 

A component is an object that's not bound to a particular program, computer 
language, or implementation. . . They are the optimal building blocks for creating the 
next generation of distributed systems. . . Components are standalone objects that 
can plug-and-play across networks, applications, languages, tools, and operating 
10 systems. Distributed objects are, by definition, components. . . Unlike traditional 

objects, components can interoperate across languages, tools, operating systems, and 
networks. But components are also object-like in the sense that they support 
encapsulation, inheritance, and polymorphism. 

15 What is a component model? 

This is a common point of confusion. From a logical perspective, the term 
"component model" is frequently used to refer to a Business Component Model in 
the same way that "object model" is used to refer to a business object model. 

20 

From a physical perspective, a component model (or a component object model) 
defines a set of conventions that provides a standard way to develop and use physical 
components, including how to define properties, events, behaviors, etc. It also 
includes the standard structure of a component's interfaces, the mechanism by which 
25 a component interacts with other components, patterns for asking a component about 
its features, a means for browsing active components, and more. Some of the 
existing component models are COM, JavaBeans, and CORBA. 

Example: A Grocery Store 

30 

A grocery store chain is creating an enterprise-wide Business Component model. 
Currently the individual stores do not record specific customer information. 
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Consequently, a model based on today's requirements would not retain customer 
information. 

However, they are looking into preferred customer cards. Furthermore, while 
5 analyzing the industry, the project team reads about a competitor with a pharmacy 
and video rental service. In both cases, customer information becomes critical. So 
the project team creates scenarios describing how they would use customer 
information to support these requirements. They create one Business Component 
Model that supports both today's and tomorrow's view of the customer. 

10 

In the near future, when the chain adopts preferred customer cards, and in the more 
distant future, they decide to add a pharmacy or video rental service, the Business 
Component design for their current application will provide a solid foundation for 
the future requirement of tracking customer information. If they weren't using 
1 5 Business Components, they would not have a model that maps to their business 
domain, and introducing new requirements would require more abrupt changes. 

Example: Inventory Management 

20 A telecommunications company in the paging business sells and leases pagers and 
services. One part of the company is installing an inventory management system for 
tracking pagers, while another part of the company is trying to determine how to 
track the frequencies that are owned and leased by the company. What does this 
company mean by inventory? Does it simply mean knowing what items are in a 

25 warehouse? 

When the company thinks abstractly about the concept of inventory, they discover 
that it's all about managing anything of value. When they look at what they have in 
inventory, they discover that it is countable, reservable, and has a cost associated 
30 with it. Inventory does not require specific knowledge of the use of an item in 
inventory; that knowledge can be put into another component, such as Item. If 
inventory does not need to know the specifics about its use, then it could apply its 
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ability to count, reserve, and value anything it is associated with. Inventory could be 
used to manage a variety of things: conference rooms, fixed assets, work in process, 
finished goods, and leased frequencies. 

5 So one can start out building an inventory management application and then build 
the ready-to-reuse Inventory component which, without modification, can support 
many other uses. In this way one can unload the concept of inventory so that it can 
be reused outside the context it was initially planned for. 

1 0 ILLUSTRATIVE EMBODIMENTS 

Any portion or portions of an exemplary embodiment described above may be used 
in any combination with any other portion or portions of any other exemplary 
embodiment or embodiments. The following examples illustrate various exemplary 
1 5 embodiments of such combinations: 

EXAMPLE 1 

Figure 153 illustrates a method 15300 for providing an exemplary embodiment of a 
20 resources e-commerce technical architecture. In operation 15302, a system is 

provided which includes a plurality of sub-activities. Each sub-activity includes sub- 
activity logic adapted to generate an output based on an input received from a user 
upon execution. Each sub-activity also includes a plurality of activities which each 
execute the sub-activities upon being selected for accomplishing a goal associated 
25 with the activity. The business objects employed by the sub-activities are managed 
in operation 15304, and information used by the sub-activities is persisted in 
operation 15306 during the execution of the sub-activities. In operation 15308, 
items such as issues, change requests, and/or service investigation reports relating to 
the system are reported. Software modules which support the sub-activities are 
30 tested in operation 15310. 



EXAMPLE 2 




Figure 154 illustrates a second exemplary embodiment of a method 15400 for 
maintaining data in an e-commerce based technical architecture. In operation 15402, 
an interface is provided between a first server and a second server with a proxy 
5 component situated between the first and second servers to manage business 
components used by the sub-activities. Information used by the sub-activities is 
persisted during the execution of the sub-activities in operation 15404. In operation 
15406, application consistency is maintained by referencing text phrases through a 
short codes framework. Additionally, software modules which support the sub- 
10 activities are also tested in operation 15408. 

EXAMPLE 3 

Figure 155 also illustrates an exemplary embodiment of a method 15500 for 
15 providing a resources e-commerce technical architecture where in operation 15502 
context objects are shared among a plurality of components executed on a 
transaction server. In operation 15504, services are also accessed within the server 
without a need for knowledge of an application program interface of the server. 
Application consistency is maintained in operation 15506 by referencing text phrases 
20 through a short codes framework. Additionally, a graphical user interface is also 
generated for the resources e-commerce technical architecture in operation 15508. 

EXAMPLE 4 

25 Figure 156 illustrates another exemplary embodiment of a method 15600 for 

providing a resources e-commerce technical architecture. In this embodiment of the 
present invention, in operation 15602 network performance modeling is performed 
on a network. In operation 15604, context objects are shared among a plurality of 
components executed on a transaction server on the network. Application 

30 consistency is maintained in operation 15606 by referencing text phrases through a 
short codes framework. Further, software modules are managed during development 
of the architecture in operation 15608. 




EXAMPLE 5 

Figure 157 illustrates an additional exemplary embodiment of a method 15700 for 
5 providing a resources e-commerce technical architecture. In operation 15702 issues 
in the technical architecture are managed for the purpose of resolution. A database 
used while managing the issues is initialized when migrated in operation 15704. 
Further, application consistency is maintained in operation 15706 by referencing text 
phrases through a short codes framework. In operation 15708, a plurality of 
1 0 software modules are generated in order to execute the technical architecture. Such 
software modules are based on business components. 

While various embodiments have been described above, it should be understood that 
they have been presented by way of example only, and not limitation. Thus, the 
breadth and scope of a preferred embodiment should not be limited by any of the 
above described exemplary embodiments, but should be defined only in accordance 
with the following claims and their equivalents. 




